CVE-2013-1364

EPSS 0.44% · P63 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2013-1364

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The user.login function in Zabbix before 1.8.16 and 2.x before 2.0.5rc1 allows remote attackers to override LDAP configuration via the cnf parameter.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Zabbix ‘cnf’LDAP身份认证安全绕过漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Zabbix是拉脱维亚Zabbix SIA公司的一套开源的监控系统。该系统可监视各种网络参数，并提供通知机制让系统管理员快速定位、解决存在的各种问题。 Zabbix 1.8.16之前的版本和2.0.5rc1之前的2.x版本中存在安全绕过漏洞，该漏洞源于‘user.login’函数未正确处理LDAP身份验证请求的‘cnf’参数。远程攻击者可借助‘cnf’参数利用该漏洞更改LDAP配置。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2013-1364

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2013-1364

请登录查看更多情报信息。

🔗 http://www.zabbix.com/rn1.8.16.phpx_refsource_CONFIRM
🔗 https://support.zabbix.com/browse/ZBX-6097x_refsource_CONFIRM
🔗 http://www.zabbix.com/rn2.0.5rc1.phpx_refsource_CONFIRM
🔗 http://secunia.com/advisories/55824third-party-advisoryx_refsource_SECUNIA
🔗 http://www.securityfocus.com/bid/57471vdb-entryx_refsource_BID
🔗 http://security.gentoo.org/glsa/glsa-201311-15.xmlvendor-advisoryx_refsource_GENTOO
https://nvd.nist.gov/vuln/detail/CVE-2013-1364

Same Patch Batch · n/a · 2013-12-14 · 41 CVEs total

CVE-2013-5107		RockMongo 目录遍历漏洞
CVE-2013-6972		Cisco WebEx Training Center 信息泄露漏洞
CVE-2013-6973		Cisco WebEx Training Center 信息泄露漏洞
CVE-2013-4520		libxslt ‘libxslt/xslt.c’远程拒绝服务漏洞
CVE-2013-6271		Android ‘com.android.settings.ChooseLockGeneric’类远程安全绕过漏洞
CVE-2013-7105		Fujitsu Interstage Application Server和Interstage Studio 缓冲区溢出漏洞
CVE-2013-4587		Linux kernel KVM ‘kvm_vm_ioctl_create_vcpu’函数数组索引错误漏洞
CVE-2013-6367		Linux kernel KVM ‘apic_get_tmcct’函数拒绝服务漏洞
CVE-2013-6368		Linux kernel KVM 本地提权漏洞
CVE-2013-6376		Linux kernel KVM ‘recalculate_apic_map’函数拒绝服务漏洞
CVE-2013-6971		Cisco WebEx Training Center 开放重定向漏洞
CVE-2013-6051		Quagga BGP Updates ‘bgp_attr.c’远程拒绝服务漏洞
CVE-2013-6391		OpenStack Identity ec2tokens API 提权漏洞
CVE-2013-6411		OpenTTD ‘MapSize()’函数拒绝服务漏洞
CVE-2013-6426		OpenStack Orchestration API 权限许可和访问控制漏洞
CVE-2013-6428		OpenStack Orchestration API 权限许可和访问控制漏洞
CVE-2013-7069		Ack 远程代码执行漏洞
CVE-2013-7085		Debian devscripts ‘uscan’文件名处理任意文件删除漏洞
CVE-2013-7103		McAfee Email Gateway 远程任意代码执行漏洞
CVE-2013-7104		McAfee Email Gateway 安全漏洞

Showing top 20 of 41 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2013-1364

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2013-1364

I. Basic Information for CVE-2013-1364

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2013-1364

III. Intelligence Information for CVE-2013-1364

Same Patch Batch · n/a · 2013-12-14 · 41 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2013-1364

Leave a comment