Unrated severityNVD Advisory· Published Dec 18, 2023· Updated Aug 2, 2024
Leak of zbx_session cookie when using a scheduled report that includes a dashboard with a URL widget.
CVE-2023-32725
Description
The website configured in the URL widget will receive a session cookie when testing or executing scheduled reports. The received session cookie can then be used to access the frontend as the particular user.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.