Vulnerability Details CVE-2022-46768
Arbitrary file read vulnerability exists in Zabbix Web Service Report Generation, which listens on the port 10053. The service does not have proper validation for URL parameters before reading the files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.085
EPSS Ranking 91.9%
CVSS Severity
CVSS v3 Score 5.9
Products affected by CVE-2022-46768
-
cpe:2.3:a:zabbix:web_service_report_generation:*
-
cpe:2.3:a:zabbix:zabbix-agent2:*
-
cpe:2.3:a:zabbix:zabbix-agent2:5.0.0
-
cpe:2.3:a:zabbix:zabbix-agent2:5.0.35
-
cpe:2.3:a:zabbix:zabbix-agent2:5.4.0
-
cpe:2.3:a:zabbix:zabbix-agent2:5.4.1
-
cpe:2.3:a:zabbix:zabbix-agent2:5.4.2
-
cpe:2.3:a:zabbix:zabbix-agent2:5.4.3
-
cpe:2.3:a:zabbix:zabbix-agent2:5.4.4
-
cpe:2.3:a:zabbix:zabbix-agent2:5.4.5
-
cpe:2.3:a:zabbix:zabbix-agent2:5.4.6
-
cpe:2.3:a:zabbix:zabbix-agent2:5.4.7
-
cpe:2.3:a:zabbix:zabbix-agent2:5.4.8
-
cpe:2.3:a:zabbix:zabbix-agent2:5.4.9
-
cpe:2.3:a:zabbix:zabbix-agent2:6.0.0