Wind River Support Network

HomeDefectsLIN1019-7819
Acknowledged

LIN1019-7819 : Security Advisory - zabbix - CVE-2021-46088

Created: Jan 27, 2022    Updated: Mar 11, 2022
Found In Version: 10.19.45.1
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Userspace

Description

Zabbix 4.0 LTS, 4.2, 4.4, and 5.0 LTS is vulnerable to Remote Code Execution (RCE). Any user with the Zabbix Admin role is able to run custom shell script on the application server in the context of the application user.

CREATE(Triage):(User=admin) CVE-2021-46088 (https://nvd.nist.gov/vuln/detail/CVE-2021-46088)
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube