Описание
In Zabbix Agent and Agent 2 on Windows, the OpenSSL configuration file is loaded from a path writable by low-privileged users, allowing malicious modification and potential local privilege escalation by injecting a DLL.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| esm-apps/bionic | not-affected | |
| esm-apps/focal | not-affected | |
| esm-apps/jammy | not-affected | |
| esm-apps/xenial | not-affected | |
| esm-infra-legacy/trusty | not-affected | |
| jammy | not-affected | |
| noble | DNE | |
| plucky | not-affected | |
| upstream | not-affected | debian: Only affects Zabbix Agent and Agent2 on Windows |
Показывать по
EPSS
Связанные уязвимости
In Zabbix Agent and Agent 2 on Windows, the OpenSSL configuration file is loaded from a path writable by low-privileged users, allowing malicious modification and potential local privilege escalation by injecting a DLL.
In Zabbix Agent and Agent 2 on Windows, the OpenSSL configuration file ...
In Zabbix Agent and Agent 2 on Windows, the OpenSSL configuration file is loaded from a path writable by low-privileged users, allowing malicious modification and potential local privilege escalation by injecting a DLL.
Уязвимость компонентов Zabbix Agent и Agent2 системы мониторинга ИТ-инфраструктуры Zabbix, позволяющая нарушителю повысить свои привилегии
EPSS