CVSS: 7.5EPSS: %CPEs: 3EXPL: 0CVE-2024-36467 – Authentication privilege escalation via user groups due to missing authorization checks
https://notcve.org/view.php?id=CVE-2024-36467
An authenticated user with API access (e.g.: user with default User role), more specifically a user with access to the user.update API endpoint is enough to be able to add themselves to any group (e.g.: Zabbix Administrators), except to groups that are disabled or having restricted GUI access. • https://support.zabbix.com/browse/ZBX-25614 • CWE-285: Improper Authorization •
CVSS: 6.5EPSS: %CPEs: 4EXPL: 0CVE-2024-36463
https://notcve.org/view.php?id=CVE-2024-36463
The implementation of atob in "Zabbix JS" allows to create a string with arbitrary content and use it to access internal properties of objects. • https://support.zabbix.com/browse/ZBX-25611 • CWE-767: Access to Critical Private Variable via Public Method •
CVSS: 2.2EPSS: %CPEs: 3EXPL: 0CVE-2024-22117 – Value of sysmap_element_url can be de-synchronized causing the map element to crash when new URLs is added
https://notcve.org/view.php?id=CVE-2024-22117
When a URL is added to the map element, it is recorded in the database with sequential IDs. Upon adding a new URL, the system retrieves the last sysmapelementurlid value and increments it by one. However, an issue arises when a user manually changes the sysmapelementurlid value by adding sysmapelementurlid + 1. This action prevents others from adding URLs to the map element. • https://support.zabbix.com/browse/ZBX-25610 • CWE-20: Improper Input Validation •
CVSS: 2.7EPSS: 0%CPEs: 3EXPL: 0CVE-2024-22123 – Zabbix Arbitrary File Read
https://notcve.org/view.php?id=CVE-2024-22123
Setting SMS media allows to set GSM modem file. Later this file is used as Linux device. But due everything is a file for Linux, it is possible to set another file, e.g. log file and zabbix_server will try to communicate with it as modem. As a result, log file will be broken with AT commands and small part for log file content will be leaked to UI. • https://support.zabbix.com/browse/ZBX-25013 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2024-22114 – System Information Widget in Global View Dashboard exposes information about Hosts to Users without Permission
https://notcve.org/view.php?id=CVE-2024-22114
User with no permission to any of the Hosts can access and view host count & other statistics through System Information Widget in Global View Dashboard. • https://support.zabbix.com/browse/ZBX-25015 • CWE-281: Improper Preservation of Permissions •