virus logo FortiClient Vulnerability

Zabbix Agent CVE-2019-15132 Information Disclousure Vulnerability

description-logoDescription

Zabbix before 4.2 allows User Enumeration. It is possible to enumerate application username based on different server responses (Login name or password is incorrect, Account is blocked for N seconds, No permissions for system access) using the requests to login.

affected-products-logoAffected Applications

Zabbix Agent

CVE References

CVE-2019-15132

Other References

https://support.zabbix.com/browse/ZBX-16532
ID 4512
Created Sep 07, 2022
Description
Updated		 Oct 26, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Zabbix
Patch manual
Application Zabbix Agent