CVE-2023-29452

Name of the Vulnerable Software and Affected Versions Zabbix (affected versions not specified)

Description The issue is related to the lack of protection for the web page structure in Zabbix, allowing an attacker to access and compromise confidential data. Specifically, the geomap configuration permits the use of HTML in the "Attribution text" field when the "Other" Tile provider is selected. This could potentially be exploited by a remote attacker.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.