VYPR
Unrated severityNVD Advisory· Published Dec 18, 2023· Updated Aug 2, 2024

Leak of zbx_session cookie when using a scheduled report that includes a dashboard with a URL widget.

CVE-2023-32725

Description

The website configured in the URL widget will receive a session cookie when testing or executing scheduled reports. The received session cookie can then be used to access the frontend as the particular user.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.