zabbix (SUSE:Linux Enterprise Server LTSS Extended Security 12 SP5) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Server LTSS Extended Security 12 SP5 package zabbix, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2024-42325 — CVSS 3.5 (low): Zabbix API user.get returns all users that share common group with the calling user. This includes media and other information, such as…
CVE-2024-36469 — CVSS 3.1 (low): Execution time for an unsuccessful login differs when using a non-existing username compared to using an existing one.
CVE-2024-42333 — CVSS 2.7 (low): The researcher is showing that it is possible to leak a small amount of Zabbix Server memory using an out of bounds read in…
CVE-2024-22117 — CVSS 2.2 (low): When a URL is added to the map element, it is recorded in the database with sequential IDs. Upon adding a new URL, the system retrieves the…