Latest Vulnerabilities and Exploits



CVE ID:

CVE-2022-23134

Details:

After the initial setup process, some steps of setup.php file are reachable not only by super-administrators, but by unauthenticated users as well. Malicious actor can pass step checks and potentially change the configuration of Zabbix Frontend.

References:

:https://support.zabbix.com/browse/ZBX-20384
:https://support.zabbix.com/browse/ZBX-20384