All errata/p10/ALT-PU-2024-18028-1
ALT-PU-2024-18028-1

Package update zabbix in branch p10

Version6.0.30-alt0.p10.1
Task#349858
Published2024-06-05
Max severityLOW
Severity:

Closed issues (2)

BDU:2025-15228
LOW2.7

Уязвимость системы мониторинга ИТ-инфраструктуры Zabbix, связанная с хранением пароля в незашифрованном виде, позволяющая нарушителю получить доступ к защищаемой информации

Published: 2025-12-05Modified: 2026-03-04
CVSS 3.xLOW 2.7
CVSS:3.x/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
CVSS 2.0LOW 3.3
CVSS:2.0/AV:N/AC:L/Au:M/C:P/I:N/A:N
References
CVE-2024-36464
LOW2.7

When exporting media types, the password is exported in the YAML in plain text. This appears to be a best practices type issue and may have no actual impact. The user would need to have permissions to access the media types and therefore would be expected to have access to these passwords.

Published: 2024-11-27Modified: 2025-11-03
CVSS 3.xLOW 2.7
CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
References