CVE-2022-35230: 
Zabbix Server vulnerability analysis and mitigation

CVE-2022-35230 is a reflected Cross-Site Scripting (XSS) vulnerability discovered in Zabbix, a network monitoring solution. The vulnerability was disclosed on July 6, 2022. The issue affects the graphs page of the Zabbix Frontend, where an authenticated user can create a link containing malicious JavaScript code and send it to other users (Debian LTS, NVD).

The vulnerability is classified as a reflected XSS vulnerability (CWE-79) in the graphs page of Zabbix Frontend. The exploitation of this vulnerability requires a known CSRF token value of the victim, which changes periodically and is difficult to predict. The vulnerability has been assigned a Low severity rating due to these exploitation requirements (Zabbix Support).

If successfully exploited, the malicious code would have access to all the same objects as the rest of the web page and could make arbitrary modifications to the contents of the page being displayed to a victim during social engineering attacks (Debian LTS).

The vulnerability has been fixed in multiple versions including 4.0.43rc1, 5.0.25rc1, 6.0.5rc1, and 6.2.0rc1. If immediate updates are not possible, administrators should review user access rights to the Zabbix Frontend and be attentive to browser warnings. Users should carefully check any links received via email or other communication channels that lead to the graphs.php page of Zabbix Frontend, particularly those containing suspicious parameters with special symbols (Zabbix Support, Ubuntu Security).