{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"moderate"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2019-15132","title":"Title"},{"category":"description","text":"Zabbix through 4.4.0alpha1 allows User Enumeration. With login requests, it is possible to enumerate application usernames based on the variability of server responses (e.g., the \"Login name or password is incorrect\" and \"No permissions for system access\" messages, or just blocking for a number of seconds). This affects both api_jsonrpc.php and index.php.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2019-15132","url":"https://www.suse.com/security/cve/CVE-2019-15132"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1146086 for CVE-2019-15132","url":"https://bugzilla.suse.com/1146086"}],"title":"SUSE CVE CVE-2019-15132","tracking":{"current_release_date":"2025-02-17T07:24:23Z","generator":{"date":"2023-02-15T04:09:04Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2019-15132","initial_release_date":"2023-02-15T04:09:04Z","revision_history":[{"date":"2023-02-15T04:09:04Z","number":"2","summary":"Current version"},{"date":"2025-01-01T06:20:19Z","number":"3","summary":"Current version"},{"date":"2025-02-15T06:59:35Z","number":"4","summary":"Current version"},{"date":"2025-02-17T07:24:23Z","number":"5","summary":"Current version"}],"status":"interim","version":"5"}}}