CVE-2023-32722

Name
CVE-2023-32722
Description
The zabbix/src/libs/zbxjson module is vulnerable to a buffer overflow when parsing JSON files via zbx_json_open.
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://support.zabbix.com/browse/ZBX-23390

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:zabbix:zabbix:7.0.0:alpha2:*:*:*:*:*:* zabbix == None == 7.0.0
cpe:2.3:a:zabbix:zabbix:*:*:*:*:*:*:*:* zabbix >= 6.4.0 <= 6.4.5
cpe:2.3:a:zabbix:zabbix:*:*:*:*:*:*:*:* zabbix >= 6.0.0 <= 6.0.20

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
zabbix edge-community 7.0.0-r0 Kevin Daudt <kdaudt@alpinelinux.org> possibly vulnerable
zabbix edge-community 7.0.0-r1 Kevin Daudt <kdaudt@alpinelinux.org> possibly vulnerable
zabbix edge-community 7.0.0-r2 Kevin Daudt <kdaudt@alpinelinux.org> possibly vulnerable