CVE-2022-46768

Arbitrary file read vulnerability exists in Zabbix Web Service Report Generation, which listens on the port 10053. The service does not have proper validation for URL parameters before reading the files.

CVSS v3 5.9 MEDIUM

5.9^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.2 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://support.zabbix.com/browse/ZBX-22087	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:zabbix:web_service_report_generation::::::::
	cpe:2.3:a:zabbix:web_service_report_generation::::::::
	cpe:2.3:a:zabbix:zabbix-agent2::::::::
	cpe:2.3:a:zabbix:zabbix-agent2::::::::

History

No history.

Information

Published : 2022-12-15 07:15

Updated : 2022-12-19 15:23

NVD link : CVE-2022-46768

Mitre link : CVE-2022-46768

CVE.ORG link : CVE-2022-46768

JSON object : View

Products Affected

zabbix

web_service_report_generation
zabbix-agent2

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2022-46768", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.2}, {"type": "Secondary", "source": "security@zabbix.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.2}]}, "published": "2022-12-15T07:15:09.733", "references": [{"url": "https://support.zabbix.com/browse/ZBX-22087", "tags": ["Patch", "Vendor Advisory"], "source": "security@zabbix.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}, {"type": "Secondary", "source": "security@zabbix.com", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "Arbitrary file read vulnerability exists in Zabbix Web Service Report Generation, which listens on the port 10053. The service does not have proper validation for URL parameters before reading the files."}, {"lang": "es", "value": "Existe una vulnerabilidad de lectura arbitraria de archivos en la generaci\u00f3n de informes del servicio web Zabbix, que escucha en el puerto 10053. El servicio no tiene una validaci\u00f3n adecuada de los par\u00e1metros de URL antes de leer los archivos."}], "lastModified": "2022-12-19T15:23:22.927", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:zabbix:web_service_report_generation:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BBB67084-E76A-4DAC-9792-69CAA171EC72", "versionEndIncluding": "6.0.11", "versionStartIncluding": "6.0.0"}, {"criteria": "cpe:2.3:a:zabbix:web_service_report_generation:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A91392BD-965F-4BAF-BCD0-A447CEDCB2E6", "versionEndIncluding": "6.2.5", "versionStartIncluding": "6.2.0"}, {"criteria": "cpe:2.3:a:zabbix:zabbix-agent2:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F9D0A845-E989-4358-AFC9-E309203B2EBD", "versionEndExcluding": "6.0.12"}, {"criteria": "cpe:2.3:a:zabbix:zabbix-agent2:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8B711CD-F826-46D0-AD7C-DCAF85F594E9", "versionEndExcluding": "6.2.6", "versionStartIncluding": "6.2.0"}], "operator": "OR"}]}], "sourceIdentifier": "security@zabbix.com"}