Zabbix

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:zabbix:zabbix:2.2.0:*:*:*:*:*:*:*

part: a version: 2.2.0 update: *

VendorZabbix (8857f8ff-2020-5e62-b9b7-687960752062)
ProductZabbix (ff27d8f3-5575-5d69-ac0d-7d8e9faa4e83)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2014-9450 vulnerable 2026-06-08 05:06:11.794393 Details available
Multiple SQL injection vulnerabilities in chart_bar.php in the frontend in Zabbix before 1.8.22, 2.0.x before 2.0.14, and 2.2.x before 2.2.8 allow remote attackers to execute arbitrary SQL commands via the (1) itemid or (2) periods parameter.
Published: 2015-01-02T20:00:00.000Z
Updated: 2024-09-16T22:46:01.055Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2014-3005 vulnerable 2026-06-08 05:05:30.633932 Details available
XML external entity (XXE) vulnerability in Zabbix 1.8.x before 1.8.21rc1, 2.0.x before 2.0.13rc1, 2.2.x before 2.2.5rc1, and 2.3.x before 2.3.2 allows remote attackers to read arbitrary files or potentially execute arbitrary code via a crafted DTD in an XML request.
Published: 2018-02-01T17:00:00.000Z
Updated: 2024-08-06T10:28:46.259Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-6824 vulnerable 2026-06-08 05:05:07.045408 Details available
Zabbix before 1.8.19rc1, 2.0 before 2.0.10rc1, and 2.2 before 2.2.1rc1 allows remote Zabbix servers and proxies to execute arbitrary commands via a newline in a flexible user parameter.
Published: 2013-12-19T02:00:00.000Z
Updated: 2024-08-06T17:46:23.955Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.