Description

Zabbix is a monitoring system. It is configured to allow guest (anonymous) access.

Remediation

Disable guest access

References

Zabbix Documentation 4.0

Related Vulnerabilities

Undertow Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-1745)

WordPress Plugin WP-DBManager 'wp-config.php' Arbitrary File Download (2.60)

[Possible] Internal Path Disclosure (*nix)

ZenCart Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-4322)

Virtual Host locations misconfiguration

Severity

Medium

Classification

CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Information Disclosure