How severe is CVE-2023-32725?

CVE-2023-32725 has a CVSS v3 score of 9.6 (CRITICAL).

CVE-2023-32725

Name: zabbix_server
Author: zabbix

9.6CRITICAL

The website configured in the URL widget will receive a session cookie when testing or executing scheduled reports. The received session cookie can then be used to access the frontend as the particula

Veröffentlicht: 12/18/2023Aktualisiert: 11/21/2024

Beschreibung

The website configured in the URL widget will receive a session cookie when testing or executing scheduled reports. The received session cookie can then be used to access the frontend as the particular user.

KI-AnalyseKI-gestützt

Betroffene Produkte

zabbixzabbix_server

7.0.0

zabbixzabbix_server

7.0.0

zabbixzabbix_server

7.0.0

zabbixfrontend

7.0.0

zabbixfrontend

7.0.0

zabbixfrontend

7.0.0

Referenzen

https://support.zabbix.com/browse/ZBX-23854
Vendor Advisory
https://support.zabbix.com/browse/ZBX-23854
Vendor Advisory