CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
Low
EPSS
Percentile
65.1%
zabbix_agentd in Zabbix before 1.8.6 and 1.9.x before 1.9.4 allows context-dependent attackers to cause a denial of service (CPU consumption) by executing the vfs.file.cksum command for a special device, as demonstrated by the /dev/urandom device.
Vendor | Product | Version | CPE |
---|---|---|---|
zabbix | zabbix | * | cpe:2.3:a:zabbix:zabbix:*:*:*:*:*:*:*:* |
zabbix | zabbix | 1.1 | cpe:2.3:a:zabbix:zabbix:1.1:*:*:*:*:*:*:* |
zabbix | zabbix | 1.1 | cpe:2.3:a:zabbix:zabbix:1.1:beta10:*:*:*:*:*:* |
zabbix | zabbix | 1.1 | cpe:2.3:a:zabbix:zabbix:1.1:beta11:*:*:*:*:*:* |
zabbix | zabbix | 1.1 | cpe:2.3:a:zabbix:zabbix:1.1:beta12:*:*:*:*:*:* |
zabbix | zabbix | 1.1 | cpe:2.3:a:zabbix:zabbix:1.1:beta2:*:*:*:*:*:* |
zabbix | zabbix | 1.1 | cpe:2.3:a:zabbix:zabbix:1.1:beta3:*:*:*:*:*:* |
zabbix | zabbix | 1.1 | cpe:2.3:a:zabbix:zabbix:1.1:beta4:*:*:*:*:*:* |
zabbix | zabbix | 1.1 | cpe:2.3:a:zabbix:zabbix:1.1:beta5:*:*:*:*:*:* |
zabbix | zabbix | 1.1 | cpe:2.3:a:zabbix:zabbix:1.1:beta6:*:*:*:*:*:* |