Created on 2024-12-04 05:44 and updated on 2024-12-04 08:17.
Description
- cve-2024-22116 9.9 (v3.1) Remote code execution within ping script Zabbix
- cve-2024-36466 8.8 (v3.1) Unauthenticated Zabbix frontend takeover when SSO is b… Zabbix
- cve-2024-36467 7.5 (v3.1) Authentication privilege escalation via user groups du… Zabbix
- cve-2024-42330 9.1 (v3.1) JS - Internal strings in HTTP headers Zabbix
- cve-2024-42327 9.9 (v3.1) SQL injection in user.get API Zabbix
Vulnerabilities included in this bundle
Author
Alexandre DulaunoyCombined sightings
| Author | Vulnerability | Source | Type | Date |
|---|---|---|---|---|
| automation | CVE-2024-36466 | https://infosec.exchange/users/cve/statuses/113559396561098054 | seen | 4 months ago |
| automation | CVE-2024-42327 | https://infosec.exchange/users/cve/statuses/113554877465801853 | seen | 4 months ago |
| automation | CVE-2024-42327 | https://infosec.exchange/users/cve/statuses/113554863211557834 | seen | 4 months ago |
| automation | CVE-2024-42330 | https://bsky.app/profile/kyosuke-tanaka.bsky.social/post/3lhb534v4qs2j | seen | 1 month ago |
| automation | CVE-2024-42330 | https://infosec.exchange/users/cve/statuses/113554936554297641 | seen | 4 months ago |
| automation | CVE-2024-36467 | https://infosec.exchange/users/cve/statuses/113553514538290733 | seen | 4 months ago |
| automation | CVE-2024-42330 | https://bsky.app/profile/kyosuke-tanaka.bsky.social/post/3lhb534v4qs2j | seen | 1 month ago |
| automation | CVE-2024-42330 | https://infosec.exchange/users/cve/statuses/113554936554297641 | seen | 4 months ago |