CVE-2013-5572

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2013-5572

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2013-5572.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2013-5572

Downstream

DEBIAN-CVE-2013-5572

MGASA-2014-0095

Published

2013-10-01T03:48:24Z

Modified

2026-04-16T06:23:45.852771995Z

Summary

[none]

Details

Zabbix 2.0.5 allows remote authenticated users to discover the LDAP bind password by leveraging management-console access and reading the ldapbindpassword value in the HTML source code.

References

http://archives.neohapsis.com/archives/fulldisclosure/2013-09/0149.html
http://lists.fedoraproject.org/pipermail/package-announce/2014-May/132376.html
http://lists.fedoraproject.org/pipermail/package-announce/2014-May/132377.html

CVE-2013-5572

Affected packages