Zabbix.Server.setup.php.Authentication.Bypass
Description
This indicates an attack attempt to exploit an Authentication Bypass Vulnerability in ZABBIX.
The vulnerability is due to a design weakness with the initial frontend configuration code in setup.php. A remote, unauthenticated attacker could exploit this vulnerability by sending a request with a maliciously crafted session cookie to a vulnerable Zabbix server. Successful exploitation of this vulnerability could lead to authentication bypass.
Affected Products
ZABBIX 5.4.0 - 5.4.8
ZABBIX 6.0.0 - 6.0.0beta1
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://support.zabbix.com/browse/ZBX-20384
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |