Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2014-3005

XML external entity (XXE) vulnerability in Zabbix 1.8.x before 1.8.21rc1, 2.0.x before 2.0.13rc1, 2.2.x before 2.2.5rc1, and 2.3.x before 2.3.2 allows remote attackers to read arbitrary files or potentially execute arbitrary code via a crafted DTD in an XML request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.045
EPSS Ranking 88.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2014-3005
  • Zabbix » Zabbix » Version: 1.8
    cpe:2.3:a:zabbix:zabbix:1.8
  • Zabbix » Zabbix » Version: 1.8.1
    cpe:2.3:a:zabbix:zabbix:1.8.1
  • Zabbix » Zabbix » Version: 1.8.10
    cpe:2.3:a:zabbix:zabbix:1.8.10
  • Zabbix » Zabbix » Version: 1.8.11
    cpe:2.3:a:zabbix:zabbix:1.8.11
  • Zabbix » Zabbix » Version: 1.8.12
    cpe:2.3:a:zabbix:zabbix:1.8.12
  • Zabbix » Zabbix » Version: 1.8.13
    cpe:2.3:a:zabbix:zabbix:1.8.13
  • Zabbix » Zabbix » Version: 1.8.14
    cpe:2.3:a:zabbix:zabbix:1.8.14
  • Zabbix » Zabbix » Version: 1.8.15
    cpe:2.3:a:zabbix:zabbix:1.8.15
  • Zabbix » Zabbix » Version: 1.8.16
    cpe:2.3:a:zabbix:zabbix:1.8.16
  • Zabbix » Zabbix » Version: 1.8.17
    cpe:2.3:a:zabbix:zabbix:1.8.17
  • Zabbix » Zabbix » Version: 1.8.18
    cpe:2.3:a:zabbix:zabbix:1.8.18
  • Zabbix » Zabbix » Version: 1.8.19
    cpe:2.3:a:zabbix:zabbix:1.8.19
  • Zabbix » Zabbix » Version: 1.8.2
    cpe:2.3:a:zabbix:zabbix:1.8.2
  • Zabbix » Zabbix » Version: 1.8.20
    cpe:2.3:a:zabbix:zabbix:1.8.20
  • Zabbix » Zabbix » Version: 1.8.3
    cpe:2.3:a:zabbix:zabbix:1.8.3
  • Zabbix » Zabbix » Version: 1.8.4
    cpe:2.3:a:zabbix:zabbix:1.8.4
  • Zabbix » Zabbix » Version: 1.8.5
    cpe:2.3:a:zabbix:zabbix:1.8.5
  • Zabbix » Zabbix » Version: 1.8.6
    cpe:2.3:a:zabbix:zabbix:1.8.6
  • Zabbix » Zabbix » Version: 1.8.7
    cpe:2.3:a:zabbix:zabbix:1.8.7
  • Zabbix » Zabbix » Version: 1.8.8
    cpe:2.3:a:zabbix:zabbix:1.8.8
  • Zabbix » Zabbix » Version: 1.8.9
    cpe:2.3:a:zabbix:zabbix:1.8.9
  • Zabbix » Zabbix » Version: 2.0.0
    cpe:2.3:a:zabbix:zabbix:2.0.0
  • Zabbix » Zabbix » Version: 2.0.1
    cpe:2.3:a:zabbix:zabbix:2.0.1
  • Zabbix » Zabbix » Version: 2.0.10
    cpe:2.3:a:zabbix:zabbix:2.0.10
  • Zabbix » Zabbix » Version: 2.0.11
    cpe:2.3:a:zabbix:zabbix:2.0.11
  • Zabbix » Zabbix » Version: 2.0.12
    cpe:2.3:a:zabbix:zabbix:2.0.12
  • Zabbix » Zabbix » Version: 2.0.2
    cpe:2.3:a:zabbix:zabbix:2.0.2
  • Zabbix » Zabbix » Version: 2.0.3
    cpe:2.3:a:zabbix:zabbix:2.0.3
  • Zabbix » Zabbix » Version: 2.0.4
    cpe:2.3:a:zabbix:zabbix:2.0.4
  • Zabbix » Zabbix » Version: 2.0.5
    cpe:2.3:a:zabbix:zabbix:2.0.5
  • Zabbix » Zabbix » Version: 2.0.6
    cpe:2.3:a:zabbix:zabbix:2.0.6
  • Zabbix » Zabbix » Version: 2.0.7
    cpe:2.3:a:zabbix:zabbix:2.0.7
  • Zabbix » Zabbix » Version: 2.0.8
    cpe:2.3:a:zabbix:zabbix:2.0.8
  • Zabbix » Zabbix » Version: 2.0.9
    cpe:2.3:a:zabbix:zabbix:2.0.9
  • Zabbix » Zabbix » Version: 2.2.0
    cpe:2.3:a:zabbix:zabbix:2.2.0
  • Zabbix » Zabbix » Version: 2.2.1
    cpe:2.3:a:zabbix:zabbix:2.2.1
  • Zabbix » Zabbix » Version: 2.2.2
    cpe:2.3:a:zabbix:zabbix:2.2.2
  • Zabbix » Zabbix » Version: 2.2.3
    cpe:2.3:a:zabbix:zabbix:2.2.3
  • Zabbix » Zabbix » Version: 2.2.4
    cpe:2.3:a:zabbix:zabbix:2.2.4
  • Zabbix » Zabbix » Version: 2.3.0
    cpe:2.3:a:zabbix:zabbix:2.3.0
  • Zabbix » Zabbix » Version: 2.3.1
    cpe:2.3:a:zabbix:zabbix:2.3.1
  • Fedoraproject » Fedora » Version: 19
    cpe:2.3:o:fedoraproject:fedora:19
  • Fedoraproject » Fedora » Version: 20
    cpe:2.3:o:fedoraproject:fedora:20


Products
Pricing
Contact Us

Shodan ® - All rights reserved