Security Bulletin: Security Vulnerabilities affect IBM Cloud Private - zabbix-agent2 package for Alpine Linux (CVE-2022-22704)

Summary Security Vulnerabilities affect IBM Cloud Private - zabbix-agent2 package for Alpine Linux Vulnerability Details CVEID: CVE-2022-22704 DESCRIPTION: zabbix-agent2 package for Alpine Linux could allow a remote authenticated attacker to gain elevated privileges on the system, caused by a...

Privilege Escalation

The zabbix-agent2 is vulnerable to privilege escalation. It allows privilege escalation to root because the design incorrectly expected that systemd would in effect determine part of the configuration...

CVE-2022-22704

The zabbix-agent2 package before 5.4.9-r1 for Alpine Linux sometimes allows privilege escalation to root because the design incorrectly expected that systemd would in effect determine part of the configuration...

CVE-2022-22704

The zabbix-agent2 package before 5.4.9-r1 for Alpine Linux sometimes allows privilege escalation to root because the design incorrectly expected that systemd would in effect determine part of the configuration...

Privilege escalation

The zabbix-agent2 package before 5.4.9-r1 for Alpine Linux sometimes allows privilege escalation to root because the design incorrectly expected that systemd would in effect determine part of the configuration...

CVE-2022-22704

The zabbix-agent2 package before 5.4.9-r1 for Alpine Linux sometimes allows privilege escalation to root because the design incorrectly expected that systemd would in effect determine part of the configuration...

CVE-2022-22704

The zabbix-agent2 package before 5.4.9-r1 for Alpine Linux sometimes allows privilege escalation to root because the design incorrectly expected that systemd would in effect determine part of the configuration...

CVE-2022-22704

The CVE-2022-22704 entry concerns the zabbix-agent2 package for Alpine Linux, prior to version 5.4.9-r1, where a design flaw caused privilege escalation to root due to relying on systemd to determine part of the configuration. Impact, as described across sources, is elevated privileges (root) on ...

PT-2022-7424 · Zabbix · Zabbix-Agent2

Name of the Vulnerable Software and Affected Versions: zabbix-agent2 versions prior to 5.4.9-r1 Description: The issue is related to a design flaw in the zabbix-agent2 package for Alpine Linux, where it incorrectly relies on systemd to determine part of the configuration, leading to a potential...

Zabbix Sia Zabbix 安全漏洞

Zabbix Sia Zabbix is an open source monitoring system from the Latvian company Zabbix SIA Zabbix Sia. The system supports network monitoring, server monitoring, cloud monitoring and application monitoring. Zabbix Sia Zabbix agent2 suffers from a security vulnerability that stems from. The...