CVE-2023-32726

LOW

Zabbix Agent 5.0.0-5.0.38 - Denial of Service via DNS Response Buffer Overflow

Title source: llm
STIX 2.1

Description

The vulnerability is caused by improper check for check if RDLENGTH does not overflow the buffer in response from DNS server.

References (5)

Core 5

Scores

CVSS v3 3.9
EPSS 0.0067
EPSS Percentile 47.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L

Details

CWE
CWE-754
Status published
Products (2)
zabbix/zabbix-agent 7.0.0 alpha1 (2 CPE variants)
zabbix/zabbix-agent 5.0.0 - 5.0.39
Published Dec 18, 2023
Tracked Since Feb 18, 2026