CVE-2022-43515

Summary

Zabbix Frontend provides a feature that allows admins to maintain the installation and ensure that only certain IP addresses can access it. In this way, any user will not be able to access the Zabbix Frontend while it is being maintained and possible sensitive data will be prevented from being disclosed. An attacker can bypass this protection and access the instance using IP address not listed in the defined range.

Affected Software

VendorProductVersion RangeStatus
ZabbixFrontend4.0.0-4.0.44affected
ZabbixFrontend5.0.0-5.0.29affected
ZabbixFrontend6.0.0-6.0.9affected
ZabbixFrontend6.2.0-6.2.4affected
ZabbixFrontend5.0.30rc1 < unspecifiedunaffected
ZabbixFrontend6.0.11rc1 < unspecifiedunaffected
ZabbixFrontend6.2.5rc1 < unspecifiedunaffected

Weaknesses

  • CWE-20: CWE-20 Improper Input Validation

Workarounds

If an immediate update is not possible, limit network access to Zabbix Frontend during the maintenance window.

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: yes
    • Technical Impact: partial

References