CVE-2026-23923

Опубликовано: 24 мар. 2026

Источник: debian

EPSS Низкий

Описание

An unauthenticated attacker can exploit the Frontend 'validate' action to blindly instantiate arbitrary PHP classes. The impact depends on environment setup but appears limited at this time.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
zabbix	not-affected			package

Примечания

https://support.zabbix.com/browse/ZBX-27641

EPSS

Процентиль: 17%

0.00055

Низкий

Связанные уязвимости

CVE-2026-23923

nvd

9 дней назад

An unauthenticated attacker can exploit the Frontend 'validate' action to blindly instantiate arbitrary PHP classes. The impact depends on environment setup but appears limited at this time.

GHSA-4mp5-p9jh-3rv5

github

9 дней назад

An unauthenticated attacker can exploit the Frontend 'validate' action to blindly instantiate arbitrary PHP classes. The impact depends on environment setup but appears limited at this time.

EPSS

Процентиль: 17%

0.00055

Низкий