CVE-2024-42327

🗓️ 27 Nov 2024 12:04:31Reported by ZabbixType

cve🔗 web.nvd.nist.gov📰️ 5 Media mentions👁 356 Views🌐 WEB

Non-admin user account SQL injection vulnerability in Zabbix frontend

Reporter	Title	Published	Views	Family All 46
GithubExploit	Exploit for CVE-2024-42327	18 Apr 202517:24	–	githubexploit
GithubExploit	Exploit for CVE-2024-42327	12 Dec 202401:32	–	githubexploit
GithubExploit	Exploit for CVE-2024-42327	3 Dec 202412:44	–	githubexploit
GithubExploit	Exploit for CVE-2024-42327	7 Dec 202421:25	–	githubexploit
GithubExploit	Exploit for CVE-2024-42327	6 Dec 202416:06	–	githubexploit
GithubExploit	Exploit for CVE-2024-42327	1 Jan 202518:25	–	githubexploit
GithubExploit	Exploit for CVE-2024-42327	1 Dec 202400:15	–	githubexploit
GithubExploit	Exploit for CVE-2024-42327	16 Feb 202507:33	–	githubexploit
AlpineLinux	CVE-2024-42327	27 Nov 202412:04	–	alpinelinux
AstraLinux	Astra Linux – Vulnerability in Zabbix	3 May 202623:59	–	astralinux

NVD

Node

zabbix zabbixRange6.0.0–6.0.32

zabbix zabbixRange6.4.0–6.4.17

zabbix zabbixRange7.0.0–7.0.1

[
  {
    "defaultStatus": "unaffected",
    "modules": [
      "API"
    ],
    "product": "Zabbix",
    "repo": "https://git.zabbix.com/",
    "vendor": "Zabbix",
    "versions": [
      {
        "changes": [
          {
            "at": "6.0.32rc1",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "6.0.31",
        "status": "affected",
        "version": "6.0.0",
        "versionType": "git"
      },
      {
        "changes": [
          {
            "at": "6.4.17rc1",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "6.4.16",
        "status": "affected",
        "version": "6.4.0",
        "versionType": "git"
      },
      {
        "changes": [
          {
            "at": "7.0.2rc1",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "7.0.1",
        "status": "affected",
        "version": "7.0.0",
        "versionType": "git"
      }
    ]
  }
]

Source	Link
support	www.support.zabbix.com/browse/ZBX-25623

Parameter	Position	Path	Description	CWE
params.selectRole	request body	/api_jsonrpc.php	Time-based blind SQLi in selectRole of user.get via Zabbix API exposure, used by POC to extract data including sessionid.	CWE-89
params.selectRole[0].roleid	request body	/api_jsonrpc.php	Time-based blind SQLi in selectRole of user.get via Zabbix API exposure, used by POC to extract data including sessionid.	CWE-89
params.selectRole[0].name AND (SELECT * FROM (SELECT(SLEEP($sleepTime - (IF(ORD(MID((SELECT sessionid FROM zabbix.sessions WHERE userid=1 and status=0 LIMIT $row,1), $position, 1))=	request body	/api_jsonrpc.php	Time-based blind SQLi in selectRole of user.get via Zabbix API exposure, used by POC to extract data including sessionid.	CWE-89
name AND (SELECT * FROM (SELECT(SLEEP($sleepTime - (IF(ORD(MID((SELECT sessionid FROM zabbix.sessions WHERE userid=1 and status=0 LIMIT $row,1), $position, 1))=	request body	/api_jsonrpc.php	Time-based blind SQLi in selectRole of user.get via Zabbix API exposure, used by POC to extract data including sessionid.	CWE-89

08 Oct 2025 16:41Current

7.2High risk

Vulners AI Score7.2

CVSS 3.19.9

EPSS0.78831

SSVC

CWE-89