CVE-2020-15803
published 2020-07-17CVE-2020-15803: Zabbix before 3.0.32rc1, 4.x before 4.0.22rc1, 4.1.x through 4.4.x before 4.4.10rc1, and 5.x before 5.0.2rc1 allows stored XSS in the URL Widget.
PriorityP351medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
32.30%
98.1th percentile
Zabbix before 3.0.32rc1, 4.x before 4.0.22rc1, 4.1.x through 4.4.x before 4.4.10rc1, and 5.x before 5.0.2rc1 allows stored XSS in the URL Widget.
Affected
23 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | zabbix | < zabbix 1:5.0.2+dfsg-1 (bookworm) | zabbix 1:5.0.2+dfsg-1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| opensuse | backports | — | — |
| opensuse | leap | — | — |
| opensuse | leap | — | — |
| zabbix | zabbix | <= 3.0.31 | — |
| zabbix | zabbix | — | — |
| zabbix | zabbix | — | — |
| zabbix | zabbix | — | — |
| zabbix | zabbix | — | — |
| zabbix | zabbix | >= 0 < 1:5.0.2+dfsg-1 | 1:5.0.2+dfsg-1 |
| zabbix | zabbix | >= 0 < 1:5.0.2+dfsg-1 | 1:5.0.2+dfsg-1 |
| zabbix | zabbix | >= 0 < 1:5.0.2+dfsg-1 | 1:5.0.2+dfsg-1 |
| zabbix | zabbix | >= 0 < 1:5.0.2+dfsg-1 | 1:5.0.2+dfsg-1 |
| zabbix | zabbix | >= 0 < 1:2.2.2+dfsg-1ubuntu1+esm4 | 1:2.2.2+dfsg-1ubuntu1+esm4 |
| zabbix | zabbix | >= 0 < 1:2.4.7+dfsg-2ubuntu2.1+esm3 | 1:2.4.7+dfsg-2ubuntu2.1+esm3 |
| zabbix | zabbix | >= 0 < 1:3.0.12+dfsg-1ubuntu0.1~esm3 | 1:3.0.12+dfsg-1ubuntu0.1~esm3 |
| zabbix | zabbix | >= 0 < 1:4.0.17+dfsg-1ubuntu0.1~esm1 | 1:4.0.17+dfsg-1ubuntu0.1~esm1 |
| zabbix | zabbix | 4.0.0 – 4.0.21 | — |
| zabbix | zabbix | 4.4 – 4.4.9 | — |
| zabbix | zabbix | 5.0.0 – 5.0.1 | — |
CVSS provenance
nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
osv9.8CRITICAL
vendor_ubuntu9.8CRITICAL
vendor_debian6.1MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
zabbix vulnerabilities
osv·2022-06-15·CVSS 9.8
CVE-2020-11800 [CRITICAL] zabbix vulnerabilities
zabbix vulnerabilities
Fu Chuang discovered that Zabbix did not properly parse IPs. A remote
attacker could possibly use this issue to execute arbitrary code. This
issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ESM and Ubuntu 18.04 ESM.
(CVE-2020-11800)
It was discovered that Zabbix incorrectly handled certain requests. A
remote attacker could possibly use this issue to execute arbitrary code.
This issue only affected Ubuntu 14.04 ESM and Ubuntu 16.04 ESM.
(CVE-2017-2824, CVE-2017-2825)
It was discovered that Zabbix incorrectly handled certain XML files. A
remote attacker could possibly use this issue to read arbitrary files or
potentially execute arbitrary code. This issue only affected
Ubuntu 14.04 ESM. (CVE-2014-3005)
It was discovered that Zabbix incorrectly handled certain inp
GHSA
GHSA-79cm-2gxq-7x9r: Zabbix before 3
ghsa_unreviewed·2022-05-24
CVE-2020-15803 [MEDIUM] CWE-79 GHSA-79cm-2gxq-7x9r: Zabbix before 3
Zabbix before 3.0.32rc1, 4.x before 4.0.22rc1, 4.1.x through 4.4.x before 4.4.10rc1, and 5.x before 5.0.2rc1 allows stored XSS in the URL Widget.
OSV
CVE-2020-15803: Zabbix before 3
osv·2020-07-17·CVSS 6.1
CVE-2020-15803 [MEDIUM] CVE-2020-15803: Zabbix before 3
Zabbix before 3.0.32rc1, 4.x before 4.0.22rc1, 4.1.x through 4.4.x before 4.4.10rc1, and 5.x before 5.0.2rc1 allows stored XSS in the URL Widget.
Ubuntu
Zabbix vulnerabilities
vendor_ubuntu·2022-06-15·CVSS 9.8
CVE-2016-10742 [CRITICAL] Zabbix vulnerabilities
Title: Zabbix vulnerabilities
Summary: Several security issues were fixed in Zabbix.
Fu Chuang discovered that Zabbix did not properly parse IPs. A remote
attacker could possibly use this issue to execute arbitrary code. This
issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ESM and Ubuntu 18.04 ESM.
(CVE-2020-11800)
It was discovered that Zabbix incorrectly handled certain requests. A
remote attacker could possibly use this issue to execute arbitrary code.
This issue only affected Ubuntu 14.04 ESM and Ubuntu 16.04 ESM.
(CVE-2017-2824, CVE-2017-2825)
It was discovered that Zabbix incorrectly handled certain XML files. A
remote attacker could possibly use this issue to read arbitrary files or
potentially execute arbitrary code. This issue only affected
Ubuntu 14.04 ESM. (CVE-2014-3005)
Debian
CVE-2020-15803: zabbix - Zabbix before 3.0.32rc1, 4.x before 4.0.22rc1, 4.1.x through 4.4.x before 4.4.10...
vendor_debian·2020·CVSS 6.1
CVE-2020-15803 [MEDIUM] CVE-2020-15803: zabbix - Zabbix before 3.0.32rc1, 4.x before 4.0.22rc1, 4.1.x through 4.4.x before 4.4.10...
Zabbix before 3.0.32rc1, 4.x before 4.0.22rc1, 4.1.x through 4.4.x before 4.4.10rc1, and 5.x before 5.0.2rc1 allows stored XSS in the URL Widget.
Scope: local
bookworm: resolved (fixed in 1:5.0.2+dfsg-1)
bullseye: resolved (fixed in 1:5.0.2+dfsg-1)
forky: resolved (fixed in 1:5.0.2+dfsg-1)
sid: resolved (fixed in 1:5.0.2+dfsg-1)
trixie: resolved (fixed in 1:5.0.2+dfsg-1)
No detection rules found.
Bugzilla
CVE-2020-15803 zabbix: stored XSS in the URL Widget
bugzilla·2020-07-17·CVSS 6.1
CVE-2020-15803 [MEDIUM] CVE-2020-15803 zabbix: stored XSS in the URL Widget
CVE-2020-15803 zabbix: stored XSS in the URL Widget
Zabbix before 3.0.32rc1, 4.x before 4.0.22rc1, 4.1.x through 4.4.x before 4.4.10rc1, and 5.x before 5.0.2rc1 allows stored XSS in the URL Widget.
References:
https://support.zabbix.com/browse/ZBX-18057
Discussion:
Created zabbix tracking bugs for this issue:
Affects: fedora-all [bug 1858259]
Bugzilla
CVE-2020-15803 zabbix: stored XSS in the URL Widget [fedora-all]
bugzilla·2020-07-17·CVSS 6.1
CVE-2020-15803 [MEDIUM] CVE-2020-15803 zabbix: stored XSS in the URL Widget [fedora-all]
CVE-2020-15803 zabbix: stored XSS in the URL Widget [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of Fedora. W
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00007.htmlhttps://lists.debian.org/debian-lts-announce/2020/08/msg00007.htmlhttps://lists.debian.org/debian-lts-announce/2021/04/msg00018.htmlhttps://lists.debian.org/debian-lts-announce/2023/04/msg00013.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ZHHIUYIVA5GZYLKW6A5G6HRELPOBZFE/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TIRIMOXH6GSBAANDCB3ANLJK4CRLWRXT/https://support.zabbix.com/browse/ZBX-18057http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00007.htmlhttps://lists.debian.org/debian-lts-announce/2020/08/msg00007.htmlhttps://lists.debian.org/debian-lts-announce/2021/04/msg00018.htmlhttps://lists.debian.org/debian-lts-announce/2023/04/msg00013.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ZHHIUYIVA5GZYLKW6A5G6HRELPOBZFE/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TIRIMOXH6GSBAANDCB3ANLJK4CRLWRXT/https://support.zabbix.com/browse/ZBX-18057
2020-07-17
Published