CVE-2022-23133

🗓️ 13 Jan 2022 15:50:41Reported by ZabbixType

An authenticated user can create a hosts group with XSS payload, leading to session hijacking

Reporter	Title	Published	Views	Family All 54
AlpineLinux	CVE-2022-23133	13 Jan 202216:15	–	alpinelinux
AstraLinux	Astra Linux - уязвимость в zabbix	20 May 202605:53	–	astralinux
Circl	CVE-2022-23133	13 Jan 202218:18	–	circl
CNNVD	Zabbix Sia Zabbix 跨站脚本漏洞	13 Jan 202200:00	–	cnnvd
Cvelist	CVE-2022-23133 Stored XSS in host groups configuration window in Zabbix Frontend	13 Jan 202215:50	–	cvelist
Debian	[SECURITY] [DLA 3909-1] zabbix security update	3 Oct 202418:05	–	debian
Debian CVE	CVE-2022-23133	13 Jan 202215:50	–	debiancve
Tenable Nessus	Debian dla-3909 : zabbix-agent - security update	3 Oct 202400:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2022-23133	27 Aug 202500:00	–	nessus
Tenable Nessus	Zabbix 5.4.x < 5.4.9 Multiple Vulnerabilities	28 Feb 202200:00	–	nessus

NVD

Node

zabbix zabbixRange5.0.0–5.0.18

zabbix zabbixRange5.4.0–5.4.8

zabbix zabbixMatch6.0.0alpha1

Node

fedoraproject fedoraMatch34

fedoraproject fedoraMatch35

[
  {
    "product": "Frontend",
    "vendor": "Zabbix",
    "versions": [
      {
        "status": "affected",
        "version": "5.0.0 – 5.0.18"
      },
      {
        "status": "affected",
        "version": "5.4.0 – 5.4.8"
      },
      {
        "lessThan": "5.0.19*",
        "status": "unaffected",
        "version": "5.0.19",
        "versionType": "custom"
      },
      {
        "lessThan": "5.4.9*",
        "status": "unaffected",
        "version": "5.4.9",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
support	www.support.zabbix.com/browse/ZBX-20388
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6SZYHXINBKCY42ITFSNCYE7KCSF33VRA/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VB6W556GVXOKUYTASTDGL3AI7S3SJHX7/
lists	www.lists.debian.org/debian-lts-announce/2024/10/msg00000.html

03 Nov 2025 22:15Current

5.6Medium risk

Vulners AI Score5.6

CVSS 23.5

CVSS 3.15.4 - 6.3

EPSS0.00963

CWE-79