0.001 Low
EPSS
Percentile
30.9%
zabbix is vulnerable to cross-site request forgery (CSRF). Lack of CSRF protection mechanism in the CControllerAuthenticationUpdate controller allows an attacker to submit requests on behalf of the authenticated Zabbix user.
lists.debian.org/debian-lts-announce/2023/04/msg00013.html
secdb.alpinelinux.org/v3.12/community.yaml
secdb.alpinelinux.org/v3.13/community.yaml
support.zabbix.com/browse/ZBX-18942