CVE-2023-32722
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Oct 12, 2023
Updated: Oct 17, 2023
CWE ID 787
CWE ID 120
Summary
CVE-2023-32722 is a newly identified vulnerability affecting the zabbix/src/libs/zbxjson module. This issue arises when the module processes JSON files using the zbx_json_open function, leading to a buffer overflow. An attacker could exploit this vulnerability by crafting a maliciously crafted JSON file and tricking the system into parsing it, possibly resulting in arbitrary code execution or denial-of-service conditions. System administrators are advised to update their Zabbix installations immediately to address this security risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Zabbix
Affected Vendors
- Zabbix LLC