CVE-2022-23131 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2022-23131 Interim 1 20 2025-02-16T03:11:35Z current 2022-01-15T02:02:43Z 2025-02-16T03:11:35Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2022-23131 In the case of instances where the SAML SSO authentication is enabled (non-default), session data can be modified by a malicious actor, because a user login stored in the session was not verified. Malicious unauthenticated actor may exploit this issue to escalate privileges and gain admin access to Zabbix Frontend. To perform the attack, SAML authentication is required to be enabled and the actor has to know the username of Zabbix user (or use the guest account, which is disabled by default). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings HPE Helion OpenStack 8 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 zabbix zabbix-agent zabbix-agent as a component of HPE Helion OpenStack 8 zabbix as a component of HPE Helion OpenStack 8 zabbix as a component of SUSE Linux Enterprise High Performance Computing 12 SP5 zabbix-agent as a component of SUSE Linux Enterprise Server 12 SP3-BCL zabbix as a component of SUSE Linux Enterprise Server 12 SP3-BCL zabbix-agent as a component of SUSE Linux Enterprise Server 12 SP3-ESPOS zabbix as a component of SUSE Linux Enterprise Server 12 SP3-ESPOS zabbix-agent as a component of SUSE Linux Enterprise Server 12 SP3-LTSS zabbix as a component of SUSE Linux Enterprise Server 12 SP3-LTSS zabbix-agent as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS zabbix as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS zabbix-agent as a component of SUSE Linux Enterprise Server 12 SP4-LTSS zabbix as a component of SUSE Linux Enterprise Server 12 SP4-LTSS zabbix-agent as a component of SUSE Linux Enterprise Server 12 SP5 zabbix as a component of SUSE Linux Enterprise Server 12 SP5 zabbix-agent as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 zabbix as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 zabbix-agent as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 zabbix as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 zabbix as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 zabbix-agent as a component of SUSE OpenStack Cloud 8 zabbix as a component of SUSE OpenStack Cloud 8 zabbix-agent as a component of SUSE OpenStack Cloud 9 zabbix as a component of SUSE OpenStack Cloud 9 zabbix-agent as a component of SUSE OpenStack Cloud Crowbar 8 zabbix as a component of SUSE OpenStack Cloud Crowbar 8 zabbix-agent as a component of SUSE OpenStack Cloud Crowbar 9 zabbix as a component of SUSE OpenStack Cloud Crowbar 9 In the case of instances where the SAML SSO authentication is enabled (non-default), session data can be modified by a malicious actor, because a user login stored in the session was not verified. Malicious unauthenticated actor may exploit this issue to escalate privileges and gain admin access to Zabbix Frontend. To perform the attack, SAML authentication is required to be enabled and the actor has to know the username of Zabbix user (or use the guest account, which is disabled by default). CVE-2022-23131 HPE Helion OpenStack 8:zabbix HPE Helion OpenStack 8:zabbix-agent SUSE Linux Enterprise High Performance Computing 12 SP5:zabbix SUSE Linux Enterprise Server 12 SP3-BCL:zabbix SUSE Linux Enterprise Server 12 SP3-BCL:zabbix-agent SUSE Linux Enterprise Server 12 SP3-ESPOS:zabbix SUSE Linux Enterprise Server 12 SP3-ESPOS:zabbix-agent SUSE Linux Enterprise Server 12 SP3-LTSS:zabbix SUSE Linux Enterprise Server 12 SP3-LTSS:zabbix-agent SUSE Linux Enterprise Server 12 SP4-ESPOS:zabbix SUSE Linux Enterprise Server 12 SP4-ESPOS:zabbix-agent SUSE Linux Enterprise Server 12 SP4-LTSS:zabbix SUSE Linux Enterprise Server 12 SP4-LTSS:zabbix-agent SUSE Linux Enterprise Server 12 SP5:zabbix SUSE Linux Enterprise Server 12 SP5:zabbix-agent SUSE Linux Enterprise Server for SAP Applications 12 SP3:zabbix SUSE Linux Enterprise Server for SAP Applications 12 SP3:zabbix-agent SUSE Linux Enterprise Server for SAP Applications 12 SP4:zabbix SUSE Linux Enterprise Server for SAP Applications 12 SP4:zabbix-agent SUSE Linux Enterprise Server for SAP Applications 12 SP5:zabbix SUSE OpenStack Cloud 8:zabbix SUSE OpenStack Cloud 8:zabbix-agent SUSE OpenStack Cloud 9:zabbix SUSE OpenStack Cloud 9:zabbix-agent SUSE OpenStack Cloud Crowbar 8:zabbix SUSE OpenStack Cloud Crowbar 8:zabbix-agent SUSE OpenStack Cloud Crowbar 9:zabbix SUSE OpenStack Cloud Crowbar 9:zabbix-agent critical 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N