Privilege Escalation to Root in Zabbix-Agent2 Package for Alpine Linux

Privilege Escalation to Root in Zabbix-Agent2 Package for Alpine Linux

CVE-2022-22704 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

The zabbix-agent2 package before 5.4.9-r1 for Alpine Linux sometimes allows privilege escalation to root because the design incorrectly expected that systemd would (in effect) determine part of the configuration.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.