Zabbix-CVE-2022-23131

Zabbix-SAML-Bypass: CVE-2022-23131

Description:

Zabbix is vulnerable to Frontend Authentication Bypass Vulnerability with enabled SAML SSO authentication, due to insecure client-side session storage. On successful exploit of this issue, it allows a malicious actor to escalate privileges and unauthorized admin access to Zabbix frontend.

Affected Version: 5.4.0 – 5.4.8; 6.0.0alpha1

Dork:

http.favicon.hash:892542951

Mitigation

It is recommended to upgrade all the instances that are running with Zabbix Web Frontend to 6.0.0beta2, 5.4.9, 5.0.19, or 4.0.37

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Zabbix-CVE-2022-23131

Description:

Affected Version: 5.4.0 – 5.4.8; 6.0.0alpha1

Dork:

Mitigation

Follow us

Vulnmachines Platform

YouTube

Twitter

Facebook

LinkedIn

About

Releases

Packages

Vulnmachines/Zabbix-CVE-2022-23131

Folders and files

Latest commit

History

Repository files navigation

Zabbix-CVE-2022-23131

Description:

Affected Version: 5.4.0 – 5.4.8; 6.0.0alpha1

Dork:

Mitigation

Follow us

Vulnmachines Platform

YouTube

Twitter

Facebook

LinkedIn

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Packages