CVE-2024-22120: Time Based SQL Injection in Zabbix Server Audit Log
First published: Fri May 17 2024(Updated: )
Zabbix server can perform command execution for configured scripts. After command is executed, audit entry is added to "Audit Log". Due to "clientip" field is not sanitized, it is possible to injection SQL into "clientip" and exploit time based blind SQL injection.
Credit: security@zabbix.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zabbix |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-22120?
CVE-2024-22120 has a high severity due to its potential for SQL injection exploitation.
How do I fix CVE-2024-22120?
To fix CVE-2024-22120, update Zabbix Server to the latest version where the vulnerability has been patched.
What types of systems are affected by CVE-2024-22120?
CVE-2024-22120 affects the Zabbix Server software that is improperly sanitizing the 'clientip' field.
What kind of attack does CVE-2024-22120 involve?
CVE-2024-22120 involves a time-based blind SQL injection attack that exploits improper input validation.
Can CVE-2024-22120 lead to unauthorized command execution?
Yes, CVE-2024-22120 can lead to unauthorized command execution on the Zabbix Server.
- agent/weakness
- agent/title
- agent/references
- agent/description
- agent/type
- agent/first-publish-date
- agent/severity
- agent/author
- agent/event
- collector/nvd-api
- source/NVD
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/zabbix
- canonical/zabbix