CVE-2023-32722

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Oct 12, 2023
Updated: Oct 17, 2023
CWE ID 787
CWE ID 120

Summary

CVE-2023-32722 is a newly identified vulnerability affecting the zabbix/src/libs/zbxjson module. This issue arises when the module processes JSON files using the zbx_json_open function, leading to a buffer overflow. An attacker could exploit this vulnerability by crafting a maliciously crafted JSON file and tricking the system into parsing it, possibly resulting in arbitrary code execution or denial-of-service conditions. System administrators are advised to update their Zabbix installations immediately to address this security risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share