Zabbix-SAML-Bypass: CVE-2022-23131
Zabbix is vulnerable to Frontend Authentication Bypass Vulnerability with enabled SAML SSO authentication, due to insecure client-side session storage. On successful exploit of this issue, it allows a malicious actor to escalate privileges and unauthorized admin access to Zabbix frontend.
http.favicon.hash:892542951
It is recommended to upgrade all the instances that are running with Zabbix Web Frontend to 6.0.0beta2, 5.4.9, 5.0.19, or 4.0.37