Zabbix RPM Installation Vulnerability: DAC_OVERRIDE SELinux Capability Bypass

Zabbix RPM Installation Vulnerability: DAC_OVERRIDE SELinux Capability Bypass

CVE-2022-23132 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

During Zabbix installation from RPM, DAC_OVERRIDE SELinux capability is in use to access PID files in [/var/run/zabbix] folder. In this case, Zabbix Proxy or Server processes can bypass file read, write and execute permissions check on the file system level

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.