XML external entity (XXE) vulnerability in Zabbix 1.8.x prior to 1.8.21rc1, 2.0.x prior to 2.0.13rc1, 2.2.x prior to 2.2.5rc1, and 2.3.x prior to 2.3.2 allows remote malicious users to read arbitrary files or potentially execute arbitrary code via a crafted DTD in an XML request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zabbix zabbix 2.2.1 |
||
zabbix zabbix 2.2.3 |
||
zabbix zabbix 2.0.5 |
||
zabbix zabbix 2.0.7 |
||
zabbix zabbix 2.0.12 |
||
zabbix zabbix 1.8.1 |
||
zabbix zabbix 1.8.8 |
||
zabbix zabbix 1.8.10 |
||
zabbix zabbix 1.8.17 |
||
zabbix zabbix 1.8.19 |
||
zabbix zabbix 2.3.0 |
||
zabbix zabbix 2.3.1 |
||
zabbix zabbix 2.2.0 |
||
zabbix zabbix 2.0.8 |
||
zabbix zabbix 2.0.9 |
||
zabbix zabbix 2.0.10 |
||
zabbix zabbix 2.0.11 |
||
zabbix zabbix 1.8.12 |
||
zabbix zabbix 1.8.13 |
||
zabbix zabbix 1.8.14 |
||
zabbix zabbix 1.8.15 |
||
zabbix zabbix 2.0.0 |
||
zabbix zabbix 2.0.1 |
||
zabbix zabbix 2.0.2 |
||
zabbix zabbix 2.0.3 |
||
zabbix zabbix 1.8.3 |
||
zabbix zabbix 1.8.4 |
||
zabbix zabbix 1.8.5 |
||
zabbix zabbix 1.8.6 |
||
zabbix zabbix 1.8.7 |
||
zabbix zabbix 1.8.20 |
||
zabbix zabbix 2.2.2 |
||
zabbix zabbix 2.2.4 |
||
zabbix zabbix 2.0.4 |
||
zabbix zabbix 2.0.6 |
||
zabbix zabbix 1.8 |
||
zabbix zabbix 1.8.2 |
||
zabbix zabbix 1.8.9 |
||
zabbix zabbix 1.8.11 |
||
zabbix zabbix 1.8.16 |
||
zabbix zabbix 1.8.18 |
||
fedoraproject fedora 19 |
||
fedoraproject fedora 20 |