ID CVE-2019-17382
Summary An issue was discovered in zabbix.php?action=dashboard.view&dashboardid=1 in Zabbix through 4.4. An attacker can bypass the login page and access the dashboard page, and then create a Dashboard, Report, Screen, or Map without any Username/Password (i.e., anonymously). All created elements (Dashboard/Report/Screen/Map) are accessible by other users and by an admin.
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
Last major update 09-10-2019 - 10:15
Published 09-10-2019 - 10:15
Last modified 09-10-2019 - 12:21
Back to Top