ALT-PU-2024-18436-1

Package update zabbix in branch sisyphus

Version6.0.30-alt1

Published2024-05-21

Max severityLOW

Severity:

Closed issues (2)

LOW2.7

Уязвимость системы мониторинга ИТ-инфраструктуры Zabbix, связанная с хранением пароля в незашифрованном виде, позволяющая нарушителю получить доступ к защищаемой информации

Published: 2025-12-05Modified: 2026-03-04

CVSS 3.xLOW 2.7

CVSS:3.x/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

CVSS 2.0LOW 3.3

CVSS:2.0/AV:N/AC:L/Au:M/C:P/I:N/A:N

References

CVE-2024-36464

LOW2.7

When exporting media types, the password is exported in the YAML in plain text. This appears to be a best practices type issue and may have no actual impact. The user would need to have permissions to access the media types and therefore would be expected to have access to these passwords.

Published: 2024-11-27Modified: 2025-11-03

CVSS 3.xLOW 2.7

CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

References