Authentication privilege escalation via user groups due to missing authorization checks. Authenticated user with API access can add themselves to any group
Reporter | Title | Published | Views | Family All 12 |
---|---|---|---|---|
Vulnrichment | CVE-2024-36467 Authentication privilege escalation via user groups due to missing authorization checks | 27 Nov 202406:16 | – | vulnrichment |
Debian CVE | CVE-2024-36467 | 27 Nov 202407:15 | – | debiancve |
NVD | CVE-2024-36467 | 27 Nov 202407:15 | – | nvd |
OSV | UBUNTU-CVE-2024-36467 | 27 Nov 202407:15 | – | osv |
CVE | CVE-2024-36467 | 27 Nov 202407:15 | – | cve |
Redos | ROS-20241216-05 | 16 Dec 202400:00 | – | redos |
Redos | ROS-20241216-06 | 16 Dec 202400:00 | – | redos |
Redos | ROS-20241216-04 | 16 Dec 202400:00 | – | redos |
Redos | ROS-20241216-03 | 16 Dec 202400:00 | – | redos |
Redos | ROS-20241216-02 | 16 Dec 202400:00 | – | redos |
[
{
"defaultStatus": "unaffected",
"modules": [
"API"
],
"product": "Zabbix",
"repo": "https://git.zabbix.com/",
"vendor": "Zabbix",
"versions": [
{
"changes": [
{
"at": "5.0.43rc1",
"status": "unaffected"
}
],
"lessThanOrEqual": "5.0.42",
"status": "affected",
"version": "5.0.0",
"versionType": "git"
},
{
"changes": [
{
"at": "6.0.33rc1",
"status": "unaffected"
}
],
"lessThanOrEqual": "6.0.32",
"status": "affected",
"version": "6.0.0",
"versionType": "git"
},
{
"changes": [
{
"at": "6.4.18rc1",
"status": "unaffected"
}
],
"lessThanOrEqual": "6.4.17",
"status": "affected",
"version": "6.4.0",
"versionType": "git"
},
{
"changes": [
{
"at": "7.0.2rc1",
"status": "unaffected"
}
],
"lessThanOrEqual": "7.0.1rc1",
"status": "affected",
"version": "7.0.0",
"versionType": "git"
}
]
}
]
Source | Link |
---|---|
support | www.support.zabbix.com/browse/ZBX-25614 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo