[Git][security-tracker-team/security-tracker][master] CVE-2024-36465/zabbix add reference to fixing commit for 7.0.x
Tobias Frost (@tobi)
tobi at debian.org
Fri Apr 18 16:10:29 BST 2025
Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker
Commits:
713d2c44 by Tobias Frost at 2025-04-18T17:10:12+02:00
CVE-2024-36465/zabbix add reference to fixing commit for 7.0.x
(internal upstream ticket: DEV-4142)
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6135,6 +6135,7 @@ CVE-2024-36469 (Execution time for an unsuccessful login differs when using a no
CVE-2024-36465 (A low privilege (regular) Zabbix user with API access can use SQL inje ...)
- zabbix 1:7.0.9+dfsg-1
NOTE: https://support.zabbix.com/browse/ZBX-26257
+ NOTE: Fixed by https://github.com/zabbix/zabbix/commit/529eec6957abff2f687c39219fa7a4a739d094c1 (7.0.8rc2)
CVE-2024-13941 (A vulnerability was found in ouch-org ouch up to 0.3.1. It has been cl ...)
NOT-FOR-US: ouch-org ouch
CVE-2023-46988 (Path Traversal vulnerability in ONLYOFFICE Document Server before v8.0 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/713d2c440f4de7c9754a115d600b2e4778845f33
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/713d2c440f4de7c9754a115d600b2e4778845f33
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250418/1aa9ba1b/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list