CVE-2022-23134
Possible view of the setup pages by unauthenticated users if config file already exists
In short
After initial setup, unauthenticated users can access certain setup pages in Zabbix Frontend if the configuration file already exists. This allows attackers to potentially modify the system configuration without proper authentication.
Technical detail
CWE-284 improper access control vulnerability in setup.php allows unauthenticated users to bypass step validation and reach configuration-modifying endpoints post-installation. The attack vector is network-based with no authentication required; the precondition is an existing Zabbix configuration file. Impact is limited to unauthorized modification of frontend configuration settings.
Summary generated and translated by AI from the official description.
After the initial setup process, some steps of setup.php file are reachable not only by super-administrators, but by unauthenticated users as well. Malicious actor can pass step checks and potentially change the configuration of Zabbix Frontend.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
Affected products
Zabbix · Frontendpublic PoCs found — 1
githubgithub.com/TheN00bBuilder/cve-2022-23134-poc-and-writeup★ 1⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://lists.debian.org/debian-lts-announce/2022/02/msg00008.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6SZYHXINBKCY42ITFSNCYE7KCSF33VRA/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VB6W556GVXOKUYTASTDGL3AI7S3SJHX7/https://support.zabbix.com/browse/ZBX-20384https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-23134