← volver
CVE-2022-43516

Zabbix Agent installer adds “allow all TCP any any” firewall rule

CVSS 6.5 MEDIUMEPSS 0.9%CWE-16
A Firewall Rule which allows all incoming TCP connections to all programs from any source and to all ports is created in Windows Firewall after Zabbix agent installation (MSI)
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L
Productos afectados
Zabbix · Zabbix agent 2 (MSI packages)Zabbix · Zabbix agent (MSI packages)

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://support.zabbix.com/browse/ZBX-22002