Cisco Blog >Threat Research

Threat Research

These vulnerabilities were discovered by Lilith Wyatt of Cisco ASIG

Zabbix is an enterprise monitoring solution that is designed to give organizations the ability to monitor the health and status of various systems within their networks, including: network services, servers, and networking equipment. Cisco recently discovered multiple vulnerabilities in the Zabbix Server software component that could be leveraged by attackers to write directly to the Zabbix Proxy database or achieve remote code execution on the Zabbix Server. Cisco worked with Zabbix to responsibly disclose these vulnerabilities and ensure that a patch is available. Zabbix has released public advisories regarding these vulnerabilities which are located here and here.

Read More »

Cisco Systems Inc. published this content on 27 April 2017 and is solely responsible for the information contained herein.
Distributed by Public, unedited and unaltered, on 27 April 2017 14:57:14 UTC.

Original documenthttps://blogs.cisco.com/security/talos/vulnerability-spotlight-multiple-vulnerabilities-in-zabbix

Public permalinkhttp://www.publicnow.com/view/2F7A73AACA7509C419E711181D2A346067FD5265