← voltar
CVE-2022-43516

Zabbix Agent installer adds “allow all TCP any any” firewall rule

CVSS 6.5 MEDIUMEPSS 0.9%CWE-16
A Firewall Rule which allows all incoming TCP connections to all programs from any source and to all ports is created in Windows Firewall after Zabbix agent installation (MSI)
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L
Produtos afetados
Zabbix · Zabbix agent 2 (MSI packages)Zabbix · Zabbix agent (MSI packages)

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://support.zabbix.com/browse/ZBX-22002