CVE-2023-32723 - Vulnerability Details - OpenCVE

Request to LDAP is sent before user permissions are checked.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact Low

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00126.

Exploitation none

Automatable no

Technical Impact partial

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Zabbix

Zabbix

unaffected

Version	Status	Constraints
`4.0.0`	affected	≤ 4.0.19rc1
`4.4.0`	affected	≤ 4.4.7rc1
`5.0.0alpha1`	affected	≤ 5.0.0alpha4

Configuration 1 [-]

OR	cpe:2.3:a:zabbix:zabbix::::::::
	cpe:2.3:a:zabbix:zabbix::::::::
	cpe:2.3:a:zabbix:zabbix:4.0.19:rc1::::::
	cpe:2.3:a:zabbix:zabbix:4.4.7:rc1::::::
	cpe:2.3:a:zabbix:zabbix:5.0.0:alpha3::::::

No data.

No data.

Subscriptions

Vendors	Products
Zabbix Subscribe	Zabbix Subscribe

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Debian DLA	DLA-3717-1	zabbix security update
EUVD	EUVD-2023-36950	Request to LDAP is sent before user permissions are checked.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://lists.debian.org/debian-lts-announce/2024/01/msg00012.html
https://support.zabbix.com/browse/ZBX-23230

History

Wed, 18 Sep 2024 08:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: Zabbix

Published: 2023-10-12T06:11:26.612Z

Updated: 2025-02-13T16:55:00.262Z

Reserved: 2023-05-11T21:25:43.368Z

Link: CVE-2023-32723

Vulnrichment

Updated: 2024-08-02T15:25:36.727Z

NVD

Status : Modified

Published: 2023-10-12T07:15:10.620

Modified: 2024-11-21T08:03:54.943

Link: CVE-2023-32723

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-732

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-32723", "assignerOrgId": "72de3e22-0555-4a0d-ae81-9249e0f0a1e8", "state": "PUBLISHED", "assignerShortName": "Zabbix", "dateReserved": "2023-05-11T21:25:43.368Z", "datePublished": "2023-10-12T06:11:26.612Z", "dateUpdated": "2025-02-13T16:55:00.262Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "modules": ["Frontend"], "product": "Zabbix", "repo": "https://git.zabbix.com/", "vendor": "Zabbix", "versions": [{"changes": [{"at": "4.0.20rc1", "status": "unaffected"}], "lessThanOrEqual": "4.0.19rc1", "status": "affected", "version": "4.0.0", "versionType": "git"}, {"changes": [{"at": "4.4.8rc1", "status": "unaffected"}], "lessThanOrEqual": "4.4.7rc1", "status": "affected", "version": "4.4.0", "versionType": "git"}, {"changes": [{"at": "5.0.0alpha4", "status": "unaffected"}], "lessThanOrEqual": "5.0.0alpha4", "status": "affected", "version": "5.0.0alpha1", "versionType": "git"}]}], "credits": [{"lang": "en", "type": "reporter", "user": "00000000-0000-4000-9000-000000000000", "value": "Zabbix wants to thank Xiaojunjie"}], "datePublic": "2023-08-09T11:41:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Request to LDAP is sent before user permissions are checked."}], "value": "Request to LDAP is sent before user permissions are checked."}], "impacts": [{"capecId": "CAPEC-101", "descriptions": [{"lang": "en", "value": "CAPEC-101 Server Side Include (SSI) Injection"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 8.5, "baseSeverity": "HIGH", "confidentialityImpact": "LOW", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-732", "description": "CWE-732 Incorrect Permission Assignment for Critical Resource", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "72de3e22-0555-4a0d-ae81-9249e0f0a1e8", "shortName": "Zabbix", "dateUpdated": "2024-01-24T22:06:37.770Z"}, "references": [{"url": "https://support.zabbix.com/browse/ZBX-23230"}, {"url": "https://lists.debian.org/debian-lts-announce/2024/01/msg00012.html"}], "source": {"discovery": "UNKNOWN"}, "title": "Inefficient permission check in class CControllerAuthenticationUpdate", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T15:25:36.727Z"}, "title": "CVE Program Container", "references": [{"url": "https://support.zabbix.com/browse/ZBX-23230", "tags": ["x_transferred"]}, {"url": "https://lists.debian.org/debian-lts-announce/2024/01/msg00012.html", "tags": ["x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-09-17T13:43:34.035247Z", "id": "CVE-2023-32723", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-17T13:53:50.255Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://support.zabbix.com/browse/ZBX-23230", "tags": ["x_transferred"]}, {"url": "https://lists.debian.org/debian-lts-announce/2024/01/msg00012.html", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T15:25:36.727Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-32723", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-17T13:43:34.035247Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-17T13:53:46.113Z"}}], "cna": {"title": "Inefficient permission check in class CControllerAuthenticationUpdate", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "reporter", "user": "00000000-0000-4000-9000-000000000000", "value": "Zabbix wants to thank Xiaojunjie"}], "impacts": [{"capecId": "CAPEC-101", "descriptions": [{"lang": "en", "value": "CAPEC-101 Server Side Include (SSI) Injection"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"repo": "https://git.zabbix.com/", "vendor": "Zabbix", "modules": ["Frontend"], "product": "Zabbix", "versions": [{"status": "affected", "changes": [{"at": "4.0.20rc1", "status": "unaffected"}], "version": "4.0.0", "versionType": "git", "lessThanOrEqual": "4.0.19rc1"}, {"status": "affected", "changes": [{"at": "4.4.8rc1", "status": "unaffected"}], "version": "4.4.0", "versionType": "git", "lessThanOrEqual": "4.4.7rc1"}, {"status": "affected", "changes": [{"at": "5.0.0alpha4", "status": "unaffected"}], "version": "5.0.0alpha1", "versionType": "git", "lessThanOrEqual": "5.0.0alpha4"}], "defaultStatus": "unaffected"}], "datePublic": "2023-08-09T11:41:00.000Z", "references": [{"url": "https://support.zabbix.com/browse/ZBX-23230"}, {"url": "https://lists.debian.org/debian-lts-announce/2024/01/msg00012.html"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "Request to LDAP is sent before user permissions are checked.", "supportingMedia": [{"type": "text/html", "value": "Request to LDAP is sent before user permissions are checked.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-732", "description": "CWE-732 Incorrect Permission Assignment for Critical Resource"}]}], "providerMetadata": {"orgId": "72de3e22-0555-4a0d-ae81-9249e0f0a1e8", "shortName": "Zabbix", "dateUpdated": "2024-01-24T22:06:37.770Z"}}}, "cveMetadata": {"cveId": "CVE-2023-32723", "state": "PUBLISHED", "dateUpdated": "2025-02-13T16:55:00.262Z", "dateReserved": "2023-05-11T21:25:43.368Z", "assignerOrgId": "72de3e22-0555-4a0d-ae81-9249e0f0a1e8", "datePublished": "2023-10-12T06:11:26.612Z", "assignerShortName": "Zabbix"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:zabbix:zabbix:*:*:*:*:*:*:*:*", "matchCriteriaId": "F3F90B06-C5E5-4A17-8712-677CB8F23A56", "versionEndExcluding": "4.0.19", "versionStartIncluding": "4.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:zabbix:zabbix:*:*:*:*:*:*:*:*", "matchCriteriaId": "67089C6F-1FB9-4F56-B0E1-3C61A26E6511", "versionEndExcluding": "4.4.7", "versionStartIncluding": "4.4.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:zabbix:zabbix:4.0.19:rc1:*:*:*:*:*:*", "matchCriteriaId": "5EBFE946-4EA3-4709-80C5-3F19AC6E6FC1", "vulnerable": true}, {"criteria": "cpe:2.3:a:zabbix:zabbix:4.4.7:rc1:*:*:*:*:*:*", "matchCriteriaId": "6B7EC65B-FDE3-479E-B3D2-8CBB408DE38C", "vulnerable": true}, {"criteria": "cpe:2.3:a:zabbix:zabbix:5.0.0:alpha3:*:*:*:*:*:*", "matchCriteriaId": "2934AECC-D265-4986-BEC2-ADC43626B3B0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Request to LDAP is sent before user permissions are checked."}, {"lang": "es", "value": "La solicitud a LDAP se env\u00eda antes de que se verifiquen los permisos del usuario."}], "id": "CVE-2023-32723", "lastModified": "2024-11-21T08:03:54.943", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 8.5, "baseSeverity": "HIGH", "confidentialityImpact": "LOW", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 4.7, "source": "security@zabbix.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-10-12T07:15:10.620", "references": [{"source": "security@zabbix.com", "url": "https://lists.debian.org/debian-lts-announce/2024/01/msg00012.html"}, {"source": "security@zabbix.com", "tags": ["Vendor Advisory"], "url": "https://support.zabbix.com/browse/ZBX-23230"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.debian.org/debian-lts-announce/2024/01/msg00012.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://support.zabbix.com/browse/ZBX-23230"}], "sourceIdentifier": "security@zabbix.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-732"}], "source": "security@zabbix.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-732"}], "source": "nvd@nist.gov", "type": "Primary"}]}