zabbix llc.

Top products

The 15 most recently published vulnerabilities affecting zabbix llc..

• CVE-2026-23928Stored XSS vulnerability in the Item history/Plain text widget8.4May 6, 2026
• CVE-2026-23926Stored XSS vulnerability in Host navigator widget maintenance tooltip8.4May 6, 2026
• CVE-2026-23924Agent 2 Docker plugin arbitrary file read via Docker API injection6.6Mar 24, 2026
• CVE-2026-23923Unauthenticated arbitrary PHP class instantiation5.3Mar 24, 2026
• CVE-2026-23921Blind, read-only SQL injection in Zabbix API via sortfield parameter8.8Mar 24, 2026
• CVE-2026-23920Host and event action script regex validation can be bypassed in certain situations, leading to potential command injection8.8Mar 24, 2026
• CVE-2026-23919Insufficient isolation of JavaScript (Duktape) execution context on Zabbix Server7.5Mar 24, 2026
• CVE-2026-23925Unauthorized host creation via configuration.import API by low-privilege user with write permissions8.1Mar 6, 2026
• CVE-2025-49643Frontend DoS vulnerability due to asymmetric resource consumption6.5Dec 1, 2025
• CVE-2025-49642Agent builds for AIX vulnerable to library loading hijacking7.3Dec 1, 2025
• CVE-2025-27232Frontend arbitrary file read in oauth.authorize action4.9Dec 1, 2025
• CVE-2025-49641Insufficient permission check for the problem.view.refresh action4.3Oct 3, 2025
• CVE-2025-27237DLL injection in Zabbix Agent and Agent 2 via OpenSSL configuration7.8Oct 3, 2025
• CVE-2025-27236User information disclosure via api_jsonrpc.php on method user.get with param search6.5Oct 3, 2025
• CVE-2025-27231LDAP 'Bind password' field value can be leaked by a Zabbix Super Admin4.9Oct 3, 2025