Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2014-1682

The API in Zabbix before 1.8.20rc1, 2.0.x before 2.0.11rc1, and 2.2.x before 2.2.2rc1 allows remote authenticated users to spoof arbitrary users via the user name in a user.login request.

  • Published: May 8, 2014
  • Updated: Apr 13, 2023
  • CVE: CVE-2014-1682
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4
  • AV:N/AC:L/Au:S/C:N/I:P/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
zabbix / zabbix 2.0.9-rc1 2.0.9-rc1.x
zabbix / zabbix 2.0.1-rc2 2.0.1-rc2.x
zabbix / zabbix 2.0.0 2.0.0.x
zabbix / zabbix 2.2.0 2.2.0.x
zabbix / zabbix 2.0.4-rc1 2.0.4-rc1.x
zabbix / zabbix 2.0.5 2.0.5.x
zabbix / zabbix 2.0.0-rc1 2.0.0-rc1.x
zabbix / zabbix 2.0.6-rc1 2.0.6-rc1.x
zabbix / zabbix 2.0.3-rc1 2.0.3-rc1.x
zabbix / zabbix 1.8.16 1.8.16.x
zabbix / zabbix 2.2.1 2.2.1.x
zabbix / zabbix 2.2.0-rc1 2.2.0-rc1.x
zabbix / zabbix 1.8.3-rc1 1.8.3-rc1.x
zabbix / zabbix 2.0.1 2.0.1.x
zabbix / zabbix 2.0.10-rc1 2.0.10-rc1.x
zabbix / zabbix 2.0.6 2.0.6.x
zabbix / zabbix 2.0.4 2.0.4.x
zabbix / zabbix 1.8.18 1.8.18.x
zabbix / zabbix 2.0.0-rc5 2.0.0-rc5.x
zabbix / zabbix 1.8 1.8.x
zabbix / zabbix 1.8.3-rc2 1.8.3-rc2.x
zabbix / zabbix 2.2.1-rc1 2.2.1-rc1.x
zabbix / zabbix 2.0.0-rc2 2.0.0-rc2.x
zabbix / zabbix 1.8.3-rc3 1.8.3-rc3.x
zabbix / zabbix 2.0.2-rc2 2.0.2-rc2.x
zabbix / zabbix 2.0.3 2.0.3.x
zabbix / zabbix 2.0.0-rc3 2.0.0-rc3.x
zabbix / zabbix 2.2.0-rc2 2.2.0-rc2.x
zabbix / zabbix 1.8.15-rc1 1.8.15-rc1.x
zabbix / zabbix 1.8.2 1.8.2.x
zabbix / zabbix 2.0.0-rc6 2.0.0-rc6.x
zabbix / zabbix 2.0.8-rc2 2.0.8-rc2.x
zabbix / zabbix 2.0.5-rc1 2.0.5-rc1.x
fedoraproject / fedora 20 20.x
zabbix / zabbix 2.0.2 2.0.2.x
zabbix / zabbix 2.0.2-rc1 2.0.2-rc1.x
zabbix / zabbix 2.0.8-rc1 2.0.8-rc1.x
zabbix / zabbix 2.0.9-rc2 2.0.9-rc2.x
zabbix / zabbix 1.8.1 1.8.1.x
zabbix / zabbix 2.0.7-rc1 2.0.7-rc1.x
zabbix / zabbix 2.0.1-rc1 2.0.1-rc1.x
fedoraproject / fedora 19 19.x
zabbix / zabbix 2.0.3-rc2 2.0.3-rc2.x
zabbix / zabbix - 1.8.19.x
zabbix / zabbix 2.0.0-rc4 2.0.0-rc4.x