How severe is CVE-2023-29450?

CVE-2023-29450 has a CVSS v3 score of 8.5 (HIGH).

CVE-2023-29450

Name: zabbix
Author: zabbix

8.5HIGH

JavaScript pre-processing can be used by the attacker to gain access to the file system (read-only access on behalf of user "zabbix") on the Zabbix Server or Zabbix Proxy, potentially leading to unaut

Publicado: 7/13/2023Actualizado: 11/3/2025

Descripción

JavaScript pre-processing can be used by the attacker to gain access to the file system (read-only access on behalf of user "zabbix") on the Zabbix Server or Zabbix Proxy, potentially leading to unauthorized access to sensitive data.

Análisis IAImpulsado por IA

Productos Afectados

zabbixzabbix

Referencias

https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html
https://support.zabbix.com/browse/ZBX-22588
Vendor Advisory
https://lists.debian.org/debian-lts-announce/2023/08/msg00027.html
https://lists.debian.org/debian-lts-announce/2024/10/msg00000.html
https://support.zabbix.com/browse/ZBX-22588
Vendor Advisory