CVE-2022-24917

NameCVE-2022-24917
DescriptionAn authenticated user can create a link with reflected Javascript code inside it for services’ page and send it to other users. The payload can be executed only with a known CSRF token value of the victim, which is changed periodically and is difficult to predict. Malicious code has access to all the same objects as the rest of the web page and can make arbitrary modifications to the contents of the page being displayed to a victim during social engineering attacks.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
ReferencesDLA-2980-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
zabbix (PTS)stretch1:3.0.7+dfsg-3vulnerable
stretch (security)1:3.0.32+dfsg-0+deb9u3fixed
buster1:4.0.4+dfsg-1vulnerable
bullseye1:5.0.8+dfsg-1vulnerable
bookworm, sid1:5.0.17+dfsg-1vulnerable

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
zabbixsourcestretch1:3.0.32+dfsg-0+deb9u3DLA-2980-1
zabbixsource(unstable)(unfixed)

Notes

https://support.zabbix.com/browse/ZBX-20680
https://git.zabbix.com/projects/ZBX/repos/zabbix/commits/ff70e709719e4e9f25f5d187637fd53fd61c8bbe (5.0.21rc1)

Search for package or bug name: Reporting problems