Your submission was sent successfully! Close

CVE-2022-23131

Published: 13 January 2022

In the case of instances where the SAML SSO authentication is enabled (non-default), session data can be modified by a malicious actor, because a user login stored in the session was not verified. Malicious unauthenticated actor may exploit this issue to escalate privileges and gain admin access to Zabbix Frontend. To perform the attack, SAML authentication is required to be enabled and the actor has to know the username of Zabbix user (or use the guest account, which is disabled by default).

Priority

Medium

Status

Package Release Status
zabbix
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 21.10 (Impish Indri) Needs triage

Ubuntu 21.04 (Hirsute Hippo) Ignored
(reached end-of-life)
Ubuntu 20.04 LTS (Focal Fossa) Needs triage

Ubuntu 18.04 LTS (Bionic Beaver) Needs triage

Ubuntu 16.04 ESM (Xenial Xerus) Ignored
(out of standard support)
Ubuntu 14.04 ESM (Trusty Tahr) Needs triage

Patches:
Upstream: https://git.zabbix.com/projects/ZBX/repos/zabbix/commits/b0f916a867a4d82aaeb569eedd651fe48a52c91c
Upstream: https://git.zabbix.com/projects/ZBX/repos/zabbix/commits/eea1f70ac668d297b02ab5df93451bd170900ef2