Zabbix · Zabbix · CVE-2022-46768
**Name of the Vulnerable Software and Affected Versions**
Zabbix (affected versions not specified)
**Description**
A security issue exists in Zabbix Web Service Report Generation, which listens on port 10053. The service lacks proper validation for URL parameters before reading files, allowing for arbitrary file read. This could enable a remote attacker to access confidential data.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.