CVE-2023-29458
- Source
- https://cve.org/CVERecord?id=CVE-2023-29458
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-29458.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-29458
- Downstream
- Published
- 2023-07-13T10:15:09.573Z
- Modified
- 2026-04-11T12:45:09.561288Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Duktape is an 3rd-party embeddable JavaScript engine, with a focus on portability and compact footprint. When adding too many values in valstack JavaScript will crash. This issue occurs due to bug in Duktape 2.6 which is an 3rd-party solution that we use.
- Database specific
{ "unresolved_ranges": [ { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "5.0.34" } ], "cpe": "cpe:2.3:a:zabbix:zabbix:5.0.34:*:*:*:*:*:*:*" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "6.4.2" } ], "cpe": "cpe:2.3:a:zabbix:zabbix:6.4.2:*:*:*:*:*:*:*" } ] }- References
Affected packages
Git / github.com/zabbix/zabbix
Affected ranges
- Type
- GIT
- Repo
- https://github.com/zabbix/zabbix
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "source": "CPE_FIELD", "extracted_events": [ { "introduced": "0" }, { "last_affected": "6.0.17" } ], "cpe": "cpe:2.3:a:zabbix:zabbix:6.0.17:*:*:*:*:*:*:*" }
Affected versions
6.*
6.0.0
6.0.0alpha1
6.0.0alpha2
6.0.0alpha3
6.0.0alpha4
6.0.0alpha5
6.0.0alpha6
6.0.0alpha7
6.0.0beta1
6.0.0beta2
6.0.0beta3
6.0.0rc1
6.0.0rc2
6.0.1
6.0.10
6.0.10rc1
6.0.10rc2
6.0.11
6.0.11rc1
6.0.11rc2
6.0.12
6.0.12rc1
6.0.12rc2
6.0.13
6.0.13rc1
6.0.14
6.0.14rc1
6.0.14rc2
6.0.15
6.0.15rc1
6.0.15rc2
6.0.16
6.0.16rc1
6.0.17
6.0.17rc1
6.0.17rc2
6.0.1rc1
6.0.1rc2
6.0.1rc3
6.0.1rc4
6.0.2
6.0.2rc1
6.0.3
6.0.3rc1
6.0.4
6.0.4rc1
6.0.5
6.0.5rc1
6.0.6
6.0.6rc1
6.0.7
6.0.7rc1
6.0.8
6.0.8rc1
6.0.8rc2
6.0.9
6.0.9rc1
6.0.9rc2