Severity: High
ID: 233862
File Name: zabbix_frontend_ZBX-26254.nasl
Version: 1.1
Type: remote
Family: CGI abuses : XSS
Published: 4/4/2025
Updated: 4/4/2025
Configuration: Enable thorough checks
Supported Sensors: Nessus
Enable CGI Scanning: true
Risk Factor: Low
Score: 3.8
Risk Factor: High
Base Score: 7.6
Vector: CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2024-45699
Risk Factor: High
Base Score: 8.1
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
CPE: cpe:/a:zabbix:zabbix
Required KB Items: installed_sw/zabbix
Excluded KB Items: Settings/disable_cgi_scanning
Patch Publication Date: 4/1/2025
Vulnerability Publication Date: 4/1/2025
CVE: CVE-2024-45699
IAVA: 2025-A-0215