Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

jeudi 4 mars 2021

Zabbix up to 4.0.27/5.0.7/5.2.3/5.3.x CControllerAuthenticationUpdate cross-site request forgery

A vulnerability, which was classified as problematic, has been found in Zabbix up to 4.0.27/5.0.7/5.2.3/5.3.x (Network Management Software). This issue affects the function CControllerAuthenticationUpdate. Upgrading to version 4.0.28rc1, 5.0.8rc1, 5.2.4rc1 or 5.4.0alpha1 eliminates this vulnerability.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 63

x

Événements SSI