PT-2024-6090 · Zabbix+2 · Zabbix+2

Justonezero

Published

2024-08-09

Updated

2024-12-10

CVE-2024-36462

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Zabbix versions prior to 7.0.0rc2

Description The issue is related to uncontrolled resource consumption, where an attacker or system uses excessive resources, such as CPU, memory, or network bandwidth, without proper limitations or controls. This can cause a denial-of-service (DoS) attack or degrade the performance of the affected system.

Recommendations For Zabbix versions prior to 7.0.0rc2, patch systems as soon as possible to mitigate the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

ALT-PU-2024-12059

BDU:2024-06996

CVE-2024-36462

Affected Products

Alt Linux

Red Os

Zabbix

PT-2024-6090 · Zabbix+2 · Zabbix+2

CVE-2024-36462

Weakness Enumeration

Related Identifiers

Affected Products

References · 23