How severe is CVE-2023-29450?

CVE-2023-29450 has a CVSS v3 score of 8.5 (HIGH).

CVE-2023-29450

Name: zabbix
Author: zabbix

8.5HIGH

JavaScript pre-processing can be used by the attacker to gain access to the file system (read-only access on behalf of user "zabbix") on the Zabbix Server or Zabbix Proxy, potentially leading to unaut

Veröffentlicht: 7/13/2023Aktualisiert: 11/3/2025

Beschreibung

JavaScript pre-processing can be used by the attacker to gain access to the file system (read-only access on behalf of user "zabbix") on the Zabbix Server or Zabbix Proxy, potentially leading to unauthorized access to sensitive data.

KI-AnalyseKI-gestützt

Betroffene Produkte

zabbixzabbix

Referenzen

https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html
https://support.zabbix.com/browse/ZBX-22588
Vendor Advisory
https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html
https://lists.debian.org/debian-lts-announce/2024/10/msg00000.html
https://support.zabbix.com/browse/ZBX-22588
Vendor Advisory