CVE-2021-27927 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2021-27927 Interim 1 17 2023-09-06T23:47:25Z current 2021-05-30T14:49:05Z 2023-09-06T23:47:25Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2021-27927 In Zabbix from 4.0.x before 4.0.28rc1, 5.0.0alpha1 before 5.0.10rc1, 5.2.x before 5.2.6rc1, and 5.4.0alpha1 before 5.4.0beta2, the CControllerAuthenticationUpdate controller lacks a CSRF protection mechanism. The code inside this controller calls diableSIDValidation inside the init() method. An attacker doesn't have to know Zabbix user login credentials, but has to know the correct Zabbix URL and contact information of an existing user with sufficient privileges. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2021-July/009235.html E-Mail link for SUSE-CU-2021:275-1 https://lists.suse.com/pipermail/sle-security-updates/2021-March/008571.html E-Mail link for SUSE-SU-2021:0990-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/EDFZEEJCPRPPDEWV6JULRJZVSQCMYOEY/ E-Mail link for openSUSE-SU-2022:0036-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ZTUQBSMWYBVSTVDYNNRW5EOI5CCOSTPZ/ E-Mail link for openSUSE-SU-2022:0058-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Package Hub 15 SP3 openSUSE Leap 15.3 openSUSE Tumbleweed zabbix-agent-4.0.12-4.12.1 zabbix-agent-4.0.32-1.4 zabbix-agent-4.0.38-bp153.2.3.1 zabbix-java-gateway-4.0.32-1.4 zabbix-java-gateway-4.0.38-bp153.2.3.1 zabbix-phpfrontend-4.0.32-1.4 zabbix-phpfrontend-4.0.38-bp153.2.3.1 zabbix-proxy-4.0.32-1.4 zabbix-proxy-4.0.38-bp153.2.3.1 zabbix-proxy-mysql-4.0.32-1.4 zabbix-proxy-mysql-4.0.38-bp153.2.3.1 zabbix-proxy-postgresql-4.0.32-1.4 zabbix-proxy-postgresql-4.0.38-bp153.2.3.1 zabbix-proxy-sqlite-4.0.32-1.4 zabbix-proxy-sqlite-4.0.38-bp153.2.3.1 zabbix-server-4.0.32-1.4 zabbix-server-4.0.38-bp153.2.3.1 zabbix-server-mysql-4.0.32-1.4 zabbix-server-mysql-4.0.38-bp153.2.3.1 zabbix-server-postgresql-4.0.32-1.4 zabbix-server-postgresql-4.0.38-bp153.2.3.1 zabbix-agent-4.0.12-4.12.1 as a component of SUSE Linux Enterprise Server 12 SP3-TERADATA zabbix-agent-4.0.12-4.12.1 as a component of SUSE Linux Enterprise Server 12 SP5 zabbix-agent-4.0.12-4.12.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 zabbix-agent-4.0.38-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 zabbix-java-gateway-4.0.38-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 zabbix-phpfrontend-4.0.38-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 zabbix-proxy-4.0.38-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 zabbix-proxy-mysql-4.0.38-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 zabbix-proxy-postgresql-4.0.38-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 zabbix-proxy-sqlite-4.0.38-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 zabbix-server-4.0.38-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 zabbix-server-mysql-4.0.38-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 zabbix-server-postgresql-4.0.38-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 zabbix-agent-4.0.38-bp153.2.3.1 as a component of openSUSE Leap 15.3 zabbix-java-gateway-4.0.38-bp153.2.3.1 as a component of openSUSE Leap 15.3 zabbix-phpfrontend-4.0.38-bp153.2.3.1 as a component of openSUSE Leap 15.3 zabbix-proxy-4.0.38-bp153.2.3.1 as a component of openSUSE Leap 15.3 zabbix-proxy-mysql-4.0.38-bp153.2.3.1 as a component of openSUSE Leap 15.3 zabbix-proxy-postgresql-4.0.38-bp153.2.3.1 as a component of openSUSE Leap 15.3 zabbix-proxy-sqlite-4.0.38-bp153.2.3.1 as a component of openSUSE Leap 15.3 zabbix-server-4.0.38-bp153.2.3.1 as a component of openSUSE Leap 15.3 zabbix-server-mysql-4.0.38-bp153.2.3.1 as a component of openSUSE Leap 15.3 zabbix-server-postgresql-4.0.38-bp153.2.3.1 as a component of openSUSE Leap 15.3 zabbix-agent-4.0.32-1.4 as a component of openSUSE Tumbleweed zabbix-java-gateway-4.0.32-1.4 as a component of openSUSE Tumbleweed zabbix-phpfrontend-4.0.32-1.4 as a component of openSUSE Tumbleweed zabbix-proxy-4.0.32-1.4 as a component of openSUSE Tumbleweed zabbix-proxy-mysql-4.0.32-1.4 as a component of openSUSE Tumbleweed zabbix-proxy-postgresql-4.0.32-1.4 as a component of openSUSE Tumbleweed zabbix-proxy-sqlite-4.0.32-1.4 as a component of openSUSE Tumbleweed zabbix-server-4.0.32-1.4 as a component of openSUSE Tumbleweed zabbix-server-mysql-4.0.32-1.4 as a component of openSUSE Tumbleweed zabbix-server-postgresql-4.0.32-1.4 as a component of openSUSE Tumbleweed In Zabbix from 4.0.x before 4.0.28rc1, 5.0.0alpha1 before 5.0.10rc1, 5.2.x before 5.2.6rc1, and 5.4.0alpha1 before 5.4.0beta2, the CControllerAuthenticationUpdate controller lacks a CSRF protection mechanism. The code inside this controller calls diableSIDValidation inside the init() method. An attacker doesn't have to know Zabbix user login credentials, but has to know the correct Zabbix URL and contact information of an existing user with sufficient privileges. CVE-2021-27927 SUSE Linux Enterprise Server 12 SP3-TERADATA:zabbix-agent-4.0.12-4.12.1 SUSE Linux Enterprise Server 12 SP5:zabbix-agent-4.0.12-4.12.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:zabbix-agent-4.0.12-4.12.1 SUSE Package Hub 15 SP3:zabbix-agent-4.0.38-bp153.2.3.1 SUSE Package Hub 15 SP3:zabbix-java-gateway-4.0.38-bp153.2.3.1 SUSE Package Hub 15 SP3:zabbix-phpfrontend-4.0.38-bp153.2.3.1 SUSE Package Hub 15 SP3:zabbix-proxy-4.0.38-bp153.2.3.1 SUSE Package Hub 15 SP3:zabbix-proxy-mysql-4.0.38-bp153.2.3.1 SUSE Package Hub 15 SP3:zabbix-proxy-postgresql-4.0.38-bp153.2.3.1 SUSE Package Hub 15 SP3:zabbix-proxy-sqlite-4.0.38-bp153.2.3.1 SUSE Package Hub 15 SP3:zabbix-server-4.0.38-bp153.2.3.1 SUSE Package Hub 15 SP3:zabbix-server-mysql-4.0.38-bp153.2.3.1 SUSE Package Hub 15 SP3:zabbix-server-postgresql-4.0.38-bp153.2.3.1 openSUSE Leap 15.3:zabbix-agent-4.0.38-bp153.2.3.1 openSUSE Leap 15.3:zabbix-java-gateway-4.0.38-bp153.2.3.1 openSUSE Leap 15.3:zabbix-phpfrontend-4.0.38-bp153.2.3.1 openSUSE Leap 15.3:zabbix-proxy-4.0.38-bp153.2.3.1 openSUSE Leap 15.3:zabbix-proxy-mysql-4.0.38-bp153.2.3.1 openSUSE Leap 15.3:zabbix-proxy-postgresql-4.0.38-bp153.2.3.1 openSUSE Leap 15.3:zabbix-proxy-sqlite-4.0.38-bp153.2.3.1 openSUSE Leap 15.3:zabbix-server-4.0.38-bp153.2.3.1 openSUSE Leap 15.3:zabbix-server-mysql-4.0.38-bp153.2.3.1 openSUSE Leap 15.3:zabbix-server-postgresql-4.0.38-bp153.2.3.1 openSUSE Tumbleweed:zabbix-agent-4.0.32-1.4 openSUSE Tumbleweed:zabbix-java-gateway-4.0.32-1.4 openSUSE Tumbleweed:zabbix-phpfrontend-4.0.32-1.4 openSUSE Tumbleweed:zabbix-proxy-4.0.32-1.4 openSUSE Tumbleweed:zabbix-proxy-mysql-4.0.32-1.4 openSUSE Tumbleweed:zabbix-proxy-postgresql-4.0.32-1.4 openSUSE Tumbleweed:zabbix-proxy-sqlite-4.0.32-1.4 openSUSE Tumbleweed:zabbix-server-4.0.32-1.4 openSUSE Tumbleweed:zabbix-server-mysql-4.0.32-1.4 openSUSE Tumbleweed:zabbix-server-postgresql-4.0.32-1.4 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H