Vulnerability CVE-2014-3005

Vulnerability CVE-2014-3005

Published: 2018-02-01

Description:

	Topic	Author	Date
High	Zabbix 1.8.x-2.2.x Local File Inclusion via XXE Attack	pnig0s	17.06.2014

Type:

(Information Exposure Through XML External Entity Reference)

CVSS Base Score	Impact Subscore	Exploitability Subscore
7.5/10	6.4/10	10/10

Affected software
Zabbix -> Zabbix
Fedoraproject -> Fedora

http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134885.html

http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134909.html

http://seclists.org/fulldisclosure/2014/Jun/87

http://www.securityfocus.com/bid/68075

https://bugzilla.redhat.com/show_bug.cgi?id=1110496

https://support.zabbix.com/browse/ZBX-8151

https://web.archive.org/web/20140622034155/http://www.pnigos.com:80/?p=273