virus logo Intrusion Prevention

Zabbix.Dashboard.URL.Widget.Stored.XSS

description-logoDescription

This indicates an attack attempt to exploit a Cross-Site Scripting Vulnerability in Zabbix Server.
The vulnerability is due to insufficient validation of user input submitted to the dashboard widget check endpoint for URL widgets. A remote authenticated attacker can exploit this vulnerability by adding an URL widget to the dashboard. Successful exploitation could result in the execution of script code in the security context of the target user's browser.

affected-products-logoAffected Products

Zabbix before 3.0.32rc1
Zabbix 4.x before 4.0.22rc1
Zabbix 4.1.x through 4.4.x before 4.4.10rc1
Zabbix 5.x before 5.0.2rc1

Impact logoImpact

System Compromise: Remote attackers can execute arbitrary script code in the context of the affected application.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://support.zabbix.com/browse/ZBX-18057

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2021-01-27 17.006 Default_action:pass:drop
2020-12-28 16.986
ID 49664
Created Dec 10, 2020
Updated Jan 26, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2020-15803
Exploit Prediction Score 8.08%
Default Action drop
Active
Affected OS Windows, Linux, BSD
Affected App PHP_app