Description
JavaScript pre-processing can be used by the attacker to gain access to the file system (read-only access on behalf of user "zabbix") on the Zabbix Server or Zabbix Proxy, potentially leading to unauthorized access to sensitive data.
Mitigation
Minimal update. May introduce new vulnerabilities or breaking changes.
|
 debian 11 | | =1:5.0.14+dfsg-1 || =1:5.0.14+dfsg-1~bpo11+1 || =1:5.0.17+dfsg-1 || =1:5.0.17+dfsg-1~bpo11+1 || =1:5.0.8+dfsg-1 || >=0 <1:5.0.44+dfsg-1+deb11u1 | 1:5.0.44+dfsg-1+deb11u1 |
debian 12 | | =1:6.0.14+dfsg-1 || =1:6.0.23+dfsg-1 || =1:6.0.23+dfsg-1~bpo12+1 || =1:6.0.24+dfsg-1 || =1:6.0.25+dfsg-1 || =1:6.0.29+dfsg-1 || =1:7.0.0+dfsg-1 || =1:7.0.0+dfsg-2 || =1:7.0.0+dfsg-2~bpo12+1 || =1:7.0.1+dfsg-1 || =1:7.0.1+dfsg-1~bpo12+1 || =1:7.0.10+dfsg-1 || =1:7.0.10+dfsg-2 || =1:7.0.2+dfsg-1 || =1:7.0.2+dfsg-1~bpo12+1 || =1:7.0.22+dfsg-1 || =1:7.0.22+dfsg-1~bpo13+1 || =1:7.0.22+dfsg-1~deb13u1 || =1:7.0.3+dfsg-1 || =1:7.0.5+dfsg-1 || =1:7.0.5+dfsg-1~bpo12+1 || =1:7.0.6+dfsg-1 || =1:7.0.9+dfsg-1 || =1:7.0.9+dfsg-1~bpo12+1 | - |
debian 13 | | | 1:6.0.23+dfsg-1 |
debian 14 | | | 1:6.0.23+dfsg-1 |
