[Git][security-tracker-team/security-tracker][master] Add CVE-2022-352{29,30}/zabbix

Fri Jul 15 21:46:45 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4e3e9314 by Salvatore Bonaccorso at 2022-07-15T22:46:10+02:00
Add CVE-2022-352{29,30}/zabbix

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1577,9 +1577,13 @@ CVE-2022-2322
 CVE-2022-2321 (Improper Restriction of Excessive Authentication Attempts in GitHub re ...)
 	NOT-FOR-US: Nakama
 CVE-2022-35230 (An authenticated user can create a link with reflected Javascript code ...)
-	TODO: check
+	- zabbix <unfixed>
+	NOTE: https://support.zabbix.com/browse/ZBX-21305
+	NOTE: Fixed in: https://git.zabbix.com/projects/ZBX/repos/zabbix/commits/3b47a97676ee9ca4e16566f1931c456459108eae (5.0.25rc1)
 CVE-2022-35229 (An authenticated user can create a link with reflected Javascript code ...)
-	TODO: check
+	- zabbix <unfixed>
+	NOTE: https://support.zabbix.com/browse/ZBX-21306
+	NOTE: Fixed in: https://git.zabbix.com/projects/ZBX/repos/zabbix/commits/b546c3f10ce98b0c914e5fc4114bd43042880c3c (5.0.25rc1)
 CVE-2022-35228 (SAP BusinessObjects CMC allows an unauthenticated attacker to retrieve ...)
 	NOT-FOR-US: SAP
 CVE-2022-35227 (A vulnerability in SAP NW EP (WPC) - versions 7.30, 7.31, 7.40, 7.50,  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4e3e93143c1bc78c915980d62465adec3936166a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4e3e93143c1bc78c915980d62465adec3936166a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220715/7f7c2610/attachment.htm>
