RedosROS-20240328-05ROS-20240328-05
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
58.8%
Vulnerability of icmpping function of Zabbix universal monitoring system is related to errors in input data processing.
of input data. Exploitation of the vulnerability could allow an attacker acting remotely to execute
arbitrary code
Vulnerability of the smart.disk.get edent of the Zabbix universal monitoring system is related to the injection of malicious code.
malicious code. Exploitation of the vulnerability could allow an attacker acting remotely to execute
arbitrary code
Vulnerability of zbx_session cookie file of Zabbix universal monitoring system is related to incorrect processing of security prefixes.
handling of security prefixes in cookie names. Exploitation of the vulnerability could allow
an attacker acting remotely to escalate his privileges
A vulnerability in the DNS Response Handler component of the Zabbix Universal Monitoring System agent is related to
insufficient checking of exceptional states. Exploitation of the vulnerability could allow an attacker,
acting remotely to cause a buffer overflow
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| redos | 7.3 | x86_64 | zabbix-server-mysql | <= 6.4.9-3 | UNKNOWN |
Related
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
58.8%