← ExploitWatch
HomeExploited Vulnerabilities

CVE-2022-23131 — Actively Exploited: Frontend (Zabbix)

Unsafe client-side session storage leading to authentication bypass/instance takeover via Zabbix Frontend with configured SAML.

CVE IDCVE-2022-23131
VendorZabbix
ProductFrontend
Vulnerability nameZabbix Frontend Authentication Bypass Vulnerability
Date added2022-02-22
Remediation due2022-03-08
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionUnsafe client-side session storage leading to authentication bypass/instance takeover via Zabbix Frontend with configured SAML.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →