An authenticated user with API access can add themselves to any group except disabled or restricted access groups
Reporter | Title | Published | Views | Family All 5 |
---|---|---|---|---|
Debian CVE | CVE-2024-36467 | 27 Nov 202407:15 | – | debiancve |
Vulnrichment | CVE-2024-36467 Authentication privilege escalation via user groups due to missing authorization checks | 27 Nov 202406:16 | – | vulnrichment |
OSV | UBUNTU-CVE-2024-36467 | 27 Nov 202407:15 | – | osv |
NVD | CVE-2024-36467 | 27 Nov 202407:15 | – | nvd |
Cvelist | CVE-2024-36467 Authentication privilege escalation via user groups due to missing authorization checks | 27 Nov 202406:16 | – | cvelist |
[
{
"defaultStatus": "unaffected",
"modules": [
"API"
],
"product": "Zabbix",
"repo": "https://git.zabbix.com/",
"vendor": "Zabbix",
"versions": [
{
"changes": [
{
"at": "5.0.43rc1",
"status": "unaffected"
}
],
"lessThanOrEqual": "5.0.42",
"status": "affected",
"version": "5.0.0",
"versionType": "git"
},
{
"changes": [
{
"at": "6.0.33rc1",
"status": "unaffected"
}
],
"lessThanOrEqual": "6.0.32",
"status": "affected",
"version": "6.0.0",
"versionType": "git"
},
{
"changes": [
{
"at": "6.4.18rc1",
"status": "unaffected"
}
],
"lessThanOrEqual": "6.4.17",
"status": "affected",
"version": "6.4.0",
"versionType": "git"
},
{
"changes": [
{
"at": "7.0.2rc1",
"status": "unaffected"
}
],
"lessThanOrEqual": "7.0.1rc1",
"status": "affected",
"version": "7.0.0",
"versionType": "git"
}
]
}
]
Source | Link |
---|---|
support | www.support.zabbix.com/browse/ZBX-25614 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo