CVE-2011-3264

EPSS 0.46%

Published: 8/19/2011Modified: 4/28/2026

Also known as:DEBIAN-CVE-2011-3264

Description

Zabbix before 1.8.6 allows remote attackers to obtain sensitive information via an invalid srcfld2 parameter to popup.php, which reveals the installation path in an error message.

Affected packages (1)

Debian/zabbixfrom 0, < 1:1.8.6-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-3264