An exploitable code execution vulnerability exists in the trapper command functionality of Zabbix Server 2.4.X. A specially crafted set of packets can cause a command injection resulting in remote code execution. An attacker can make requests from an active Zabbix Proxy to trigger this vulnerability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zabbix zabbix 2.4.1 |
||
zabbix zabbix 2.4.9 |
||
zabbix zabbix 2.4.2 |
||
zabbix zabbix 2.4.0 |
||
zabbix zabbix 2.4.4 |
||
zabbix zabbix 2.4.3 |
||
zabbix zabbix 2.4.6 |
||
zabbix zabbix 2.4.5 |
||
zabbix zabbix 2.4.8 |
||
zabbix zabbix 2.4.7 |