Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-22114 (GCVE-0-2024-22114)
Vulnerability from cvelistv5
Published
2024-08-09 10:15
Modified
2024-08-09 13:31
Severity ?
EPSS score ?
Summary
User with no permission to any of the Hosts can access and view host count & other statistics through System Information Widget in Global View Dashboard.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| security@zabbix.com | https://support.zabbix.com/browse/ZBX-25015 | Vendor Advisory |
Impacted products
{ containers: { adp: [ { metrics: [ { other: { content: { id: "CVE-2024-22114", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-08-09T12:39:48.925754Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-08-09T12:39:57.026Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", modules: [ "Server", "Frontend", ], product: "Zabbix", repo: "https://git.zabbix.com/", vendor: "Zabbix", versions: [ { changes: [ { at: "5.0.43rc1", status: "unaffected", }, ], lessThanOrEqual: "5.0.42", status: "affected", version: "5,0,0", versionType: "git", }, { changes: [ { at: "6.0.31rc1", status: "unaffected", }, ], lessThanOrEqual: "6.0.30", status: "affected", version: "6.0", versionType: "git", }, { changes: [ { at: "6.4.16rc1", status: "unaffected", }, ], lessThanOrEqual: "6.4.15", status: "affected", version: "6.4.0", versionType: "git", }, { changes: [ { at: "7.0.0rc3", status: "unaffected", }, ], lessThanOrEqual: "7.0.0rc2", status: "affected", version: "7.0.0alpha1", versionType: "git", }, ], }, ], credits: [ { lang: "en", type: "reporter", value: "Zabbix wants to thank Jayateertha G (jayateerthag) who submitted this report in HackerOne bug bounty platform", }, ], datePublic: "2024-06-12T11:53:00.000Z", descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "User with no permission to any of the Hosts can access and view host count & other statistics through System Information Widget in Global View Dashboard.<br>", }, ], value: "User with no permission to any of the Hosts can access and view host count & other statistics through System Information Widget in Global View Dashboard.", }, ], impacts: [ { capecId: "CAPEC-410", descriptions: [ { lang: "en", value: "CAPEC-410 Information Elicitation", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-281", description: "CWE-281 Improper Preservation of Permissions", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-08-09T13:31:39.639Z", orgId: "72de3e22-0555-4a0d-ae81-9249e0f0a1e8", shortName: "Zabbix", }, references: [ { url: "https://support.zabbix.com/browse/ZBX-25015", }, ], source: { discovery: "EXTERNAL", }, title: "System Information Widget in Global View Dashboard exposes information about Hosts to Users without Permission", x_generator: { engine: "Vulnogram 0.2.0", }, }, }, cveMetadata: { assignerOrgId: "72de3e22-0555-4a0d-ae81-9249e0f0a1e8", assignerShortName: "Zabbix", cveId: "CVE-2024-22114", datePublished: "2024-08-09T10:15:26.509Z", dateReserved: "2024-01-05T07:44:01.394Z", dateUpdated: "2024-08-09T13:31:39.639Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { fkie_nvd: { configurations: "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"5.0.0\", \"versionEndIncluding\": \"5.0.42\", \"matchCriteriaId\": \"D5950D0D-9DFF-4B36-9AAF-43CBCEFE7101\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"6.0.0\", \"versionEndIncluding\": \"6.0.30\", \"matchCriteriaId\": \"D1D26F5C-A94F-4273-81D7-7DDF7541C3E7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"6.4.0\", \"versionEndIncluding\": \"6.4.15\", \"matchCriteriaId\": \"E0DA6900-EB3E-4867-BD97-243686EECADD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha1:*:*:*:*:*:*\", \"matchCriteriaId\": \"93EB5757-7F98-4428-9616-C30A647A6612\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha2:*:*:*:*:*:*\", \"matchCriteriaId\": \"DA00BDB5-433F-44E5-87AC-DA01C64B5DB3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha3:*:*:*:*:*:*\", \"matchCriteriaId\": \"98C46C92-9D86-45CD-88FE-DFBB5502BB88\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha4:*:*:*:*:*:*\", \"matchCriteriaId\": \"B568E6DD-A6D1-4402-BB40-7DA2596A5BC8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha5:*:*:*:*:*:*\", \"matchCriteriaId\": \"B9C3673B-8459-4C63-8E90-724D1D42A8BB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha6:*:*:*:*:*:*\", \"matchCriteriaId\": \"7C9F6957-7526-4852-A579-DE556DBFAA97\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha7:*:*:*:*:*:*\", \"matchCriteriaId\": \"81A7A191-93DE-4C5D-963E-E8890FF7AACA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha8:*:*:*:*:*:*\", \"matchCriteriaId\": \"AEE202D5-3C88-43A5-9328-FC78D0B9B8CF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha9:*:*:*:*:*:*\", \"matchCriteriaId\": \"F88BFB75-7951-47D5-941F-3839E9E31FFA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:7.0.0:beta1:*:*:*:*:*:*\", \"matchCriteriaId\": \"8216247E-C160-4D2C-906E-9D8CD731B5C2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:7.0.0:beta2:*:*:*:*:*:*\", \"matchCriteriaId\": \"06548219-0DC3-4B5B-85D1-B1EE0FA30CD2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:7.0.0:beta3:*:*:*:*:*:*\", \"matchCriteriaId\": \"4D23985B-2F4D-41F6-B9D6-7B184FC7E447\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:7.0.0:rc1:*:*:*:*:*:*\", \"matchCriteriaId\": \"97964B9B-6A5E-4547-8886-E81B0849A876\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:zabbix:zabbix:7.0.0:rc2:*:*:*:*:*:*\", \"matchCriteriaId\": \"40992B5F-0D83-4D5C-9188-E84C369FF92F\"}]}]}]", descriptions: "[{\"lang\": \"en\", \"value\": \"User with no permission to any of the Hosts can access and view host count & other statistics through System Information Widget in Global View Dashboard.\"}, {\"lang\": \"es\", \"value\": \"El usuario sin permiso para ninguno de los Hosts puede acceder y ver el recuento de hosts y otras estad\\u00edsticas a trav\\u00e9s del widget de informaci\\u00f3n del sistema en Global View Dashboard.\"}]", id: "CVE-2024-22114", lastModified: "2024-12-04T15:28:53.450", metrics: "{\"cvssMetricV31\": [{\"source\": \"security@zabbix.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\", \"baseScore\": 4.3, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 1.4}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\", \"baseScore\": 4.3, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 1.4}]}", published: "2024-08-12T13:38:15.627", references: "[{\"url\": \"https://support.zabbix.com/browse/ZBX-25015\", \"source\": \"security@zabbix.com\", \"tags\": [\"Vendor Advisory\"]}]", sourceIdentifier: "security@zabbix.com", vulnStatus: "Analyzed", weaknesses: "[{\"source\": \"security@zabbix.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-281\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-281\"}]}]", }, nvd: "{\"cve\":{\"id\":\"CVE-2024-22114\",\"sourceIdentifier\":\"security@zabbix.com\",\"published\":\"2024-08-12T13:38:15.627\",\"lastModified\":\"2024-12-04T15:28:53.450\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"User with no permission to any of the Hosts can access and view host count & other statistics through System Information Widget in Global View Dashboard.\"},{\"lang\":\"es\",\"value\":\"El usuario sin permiso para ninguno de los Hosts puede acceder y ver el recuento de hosts y otras estadísticas a través del widget de información del sistema en Global View Dashboard.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security@zabbix.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":4.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":1.4},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":4.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":1.4}]},\"weaknesses\":[{\"source\":\"security@zabbix.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-281\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-281\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.0.0\",\"versionEndIncluding\":\"5.0.42\",\"matchCriteriaId\":\"D5950D0D-9DFF-4B36-9AAF-43CBCEFE7101\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.0.0\",\"versionEndIncluding\":\"6.0.30\",\"matchCriteriaId\":\"D1D26F5C-A94F-4273-81D7-7DDF7541C3E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.4.0\",\"versionEndIncluding\":\"6.4.15\",\"matchCriteriaId\":\"E0DA6900-EB3E-4867-BD97-243686EECADD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha1:*:*:*:*:*:*\",\"matchCriteriaId\":\"93EB5757-7F98-4428-9616-C30A647A6612\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha2:*:*:*:*:*:*\",\"matchCriteriaId\":\"DA00BDB5-433F-44E5-87AC-DA01C64B5DB3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha3:*:*:*:*:*:*\",\"matchCriteriaId\":\"98C46C92-9D86-45CD-88FE-DFBB5502BB88\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha4:*:*:*:*:*:*\",\"matchCriteriaId\":\"B568E6DD-A6D1-4402-BB40-7DA2596A5BC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha5:*:*:*:*:*:*\",\"matchCriteriaId\":\"B9C3673B-8459-4C63-8E90-724D1D42A8BB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha6:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C9F6957-7526-4852-A579-DE556DBFAA97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha7:*:*:*:*:*:*\",\"matchCriteriaId\":\"81A7A191-93DE-4C5D-963E-E8890FF7AACA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha8:*:*:*:*:*:*\",\"matchCriteriaId\":\"AEE202D5-3C88-43A5-9328-FC78D0B9B8CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:7.0.0:alpha9:*:*:*:*:*:*\",\"matchCriteriaId\":\"F88BFB75-7951-47D5-941F-3839E9E31FFA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:7.0.0:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"8216247E-C160-4D2C-906E-9D8CD731B5C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:7.0.0:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"06548219-0DC3-4B5B-85D1-B1EE0FA30CD2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:7.0.0:beta3:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D23985B-2F4D-41F6-B9D6-7B184FC7E447\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:7.0.0:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"97964B9B-6A5E-4547-8886-E81B0849A876\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:zabbix:zabbix:7.0.0:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"40992B5F-0D83-4D5C-9188-E84C369FF92F\"}]}]}],\"references\":[{\"url\":\"https://support.zabbix.com/browse/ZBX-25015\",\"source\":\"security@zabbix.com\",\"tags\":[\"Vendor Advisory\"]}]}}", vulnrichment: { containers: "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-22114\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-08-09T12:39:48.925754Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-08-09T12:39:53.004Z\"}}], \"cna\": {\"title\": \"System Information Widget in Global View Dashboard exposes information about Hosts to Users without Permission\", \"source\": {\"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"reporter\", \"value\": \"Zabbix wants to thank Jayateertha G (jayateerthag) who submitted this report in HackerOne bug bounty platform\"}], \"impacts\": [{\"capecId\": \"CAPEC-410\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-410 Information Elicitation\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 4.3, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"LOW\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"repo\": \"https://git.zabbix.com/\", \"vendor\": \"Zabbix\", \"modules\": [\"Server\", \"Frontend\"], \"product\": \"Zabbix\", \"versions\": [{\"status\": \"affected\", \"changes\": [{\"at\": \"5.0.43rc1\", \"status\": \"unaffected\"}], \"version\": \"5,0,0\", \"versionType\": \"git\", \"lessThanOrEqual\": \"5.0.42\"}, {\"status\": \"affected\", \"changes\": [{\"at\": \"6.0.31rc1\", \"status\": \"unaffected\"}], \"version\": \"6.0\", \"versionType\": \"git\", \"lessThanOrEqual\": \"6.0.30\"}, {\"status\": \"affected\", \"changes\": [{\"at\": \"6.4.16rc1\", \"status\": \"unaffected\"}], \"version\": \"6.4.0\", \"versionType\": \"git\", \"lessThanOrEqual\": \"6.4.15\"}, {\"status\": \"affected\", \"changes\": [{\"at\": \"7.0.0rc3\", \"status\": \"unaffected\"}], \"version\": \"7.0.0alpha1\", \"versionType\": \"git\", \"lessThanOrEqual\": \"7.0.0rc2\"}], \"defaultStatus\": \"unaffected\"}], \"datePublic\": \"2024-06-12T11:53:00.000Z\", \"references\": [{\"url\": \"https://support.zabbix.com/browse/ZBX-25015\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"User with no permission to any of the Hosts can access and view host count & other statistics through System Information Widget in Global View Dashboard.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"User with no permission to any of the Hosts can access and view host count & other statistics through System Information Widget in Global View Dashboard.<br>\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-281\", \"description\": \"CWE-281 Improper Preservation of Permissions\"}]}], \"providerMetadata\": {\"orgId\": \"72de3e22-0555-4a0d-ae81-9249e0f0a1e8\", \"shortName\": \"Zabbix\", \"dateUpdated\": \"2024-08-09T13:31:39.639Z\"}}}", cveMetadata: "{\"cveId\": \"CVE-2024-22114\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-08-09T13:31:39.639Z\", \"dateReserved\": \"2024-01-05T07:44:01.394Z\", \"assignerOrgId\": \"72de3e22-0555-4a0d-ae81-9249e0f0a1e8\", \"datePublished\": \"2024-08-09T10:15:26.509Z\", \"assignerShortName\": \"Zabbix\"}", dataType: "CVE_RECORD", dataVersion: "5.1", }, }, }
ghsa-p859-wc97-3523
Vulnerability from github
Published
2024-08-12 15:30
Modified
2024-08-12 15:30
Severity ?
Details
User with no permission to any of the Hosts can access and view host count & other statistics through System Information Widget in Global View Dashboard.
{ affected: [], aliases: [ "CVE-2024-22114", ], database_specific: { cwe_ids: [ "CWE-281", ], github_reviewed: false, github_reviewed_at: null, nvd_published_at: "2024-08-12T13:38:15Z", severity: "MODERATE", }, details: "User with no permission to any of the Hosts can access and view host count & other statistics through System Information Widget in Global View Dashboard.", id: "GHSA-p859-wc97-3523", modified: "2024-08-12T15:30:49Z", published: "2024-08-12T15:30:48Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-22114", }, { type: "WEB", url: "https://support.zabbix.com/browse/ZBX-25015", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", type: "CVSS_V3", }, ], }
wid-sec-w-2024-1811
Vulnerability from csaf_certbund
Published
2024-08-11 22:00
Modified
2024-12-01 23:00
Summary
Zabbix: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Zabbix ist ein Open-Source Netzwerk-Monitoringsystem.
Angriff
Ein Angreifer kann mehrere Schwachstellen in Zabbix ausnutzen, um Informationen offenzulegen, Dateien zu manipulieren, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu verursachen oder beliebigen Code auszuführen.
Betroffene Betriebssysteme
- Linux
- Sonstiges
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Zabbix ist ein Open-Source Netzwerk-Monitoringsystem.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein Angreifer kann mehrere Schwachstellen in Zabbix ausnutzen, um Informationen offenzulegen, Dateien zu manipulieren, Sicherheitsmaßnahmen zu umgehen, einen Denial-of-Service-Zustand zu verursachen oder beliebigen Code auszuführen.", title: "Angriff", }, { category: "general", text: "- Linux\n- Sonstiges", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2024-1811 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1811.json", }, { category: "self", summary: "WID-SEC-2024-1811 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1811", }, { category: "external", summary: "Zabbix Bugs ans Issues vom 2024-08-11", url: "https://support.zabbix.com/browse/ZBX-25011", }, { category: "external", summary: "Zabbix Bugs ans Issues vom 2024-08-11", url: "https://support.zabbix.com/browse/ZBX-25012", }, { category: "external", summary: "Zabbix Bugs ans Issues vom 2024-08-11", url: "https://support.zabbix.com/browse/ZBX-25013", }, { category: "external", summary: "Zabbix Bugs ans Issues vom 2024-08-11", url: "https://support.zabbix.com/browse/ZBX-25015", }, { category: "external", summary: "Zabbix Bugs ans Issues vom 2024-08-11", url: "https://support.zabbix.com/browse/ZBX-25016", }, { category: "external", summary: "Zabbix Bugs ans Issues vom 2024-08-11", url: "https://support.zabbix.com/browse/ZBX-25017", }, { category: "external", summary: "Zabbix Bugs ans Issues vom 2024-08-11", url: "https://support.zabbix.com/browse/ZBX-25018", }, { category: "external", summary: "Zabbix Bugs ans Issues vom 2024-08-11", url: "https://support.zabbix.com/browse/ZBX-25019", }, { category: "external", summary: "Fedora Security Advisory FEDORA-EPEL-2024-0214E32CB7 vom 2024-08-15", url: "https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-0214e32cb7", }, { category: "external", summary: "Fedora Security Advisory FEDORA-2024-8382D1B267 vom 2024-08-15", url: "https://bodhi.fedoraproject.org/updates/FEDORA-2024-8382d1b267", }, { category: "external", summary: "Fedora Security Advisory FEDORA-EPEL-2024-E76322A49B vom 2024-08-15", url: "https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-e76322a49b", }, { category: "external", summary: "Fedora Security Advisory FEDORA-2024-C89D2ECDEA vom 2024-08-15", url: "https://bodhi.fedoraproject.org/updates/FEDORA-2024-c89d2ecdea", }, { category: "external", summary: "openSUSE Security Update OPENSUSE-SU-2024:14356-1 vom 2024-09-22", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/3PD6B3LKRPYC75TREXWUSOIW63MKTVPM/", }, { category: "external", summary: "Debian Security Advisory DLA-3909 vom 2024-10-03", url: "https://lists.debian.org/debian-lts-announce/2024/10/msg00000.html", }, { category: "external", summary: "openSUSE Security Update OPENSUSE-SU-2024:0384-1 vom 2024-12-01", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/C6HFPCXWPBUGZ3BE7T5OXXTSGEHUCHFU/", }, ], source_lang: "en-US", title: "Zabbix: Mehrere Schwachstellen", tracking: { current_release_date: "2024-12-01T23:00:00.000+00:00", generator: { date: "2024-12-02T09:04:00.950+00:00", engine: { name: "BSI-WID", version: "1.3.8", }, }, id: "WID-SEC-W-2024-1811", initial_release_date: "2024-08-11T22:00:00.000+00:00", revision_history: [ { date: "2024-08-11T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2024-08-15T22:00:00.000+00:00", number: "2", summary: "Neue Updates von Fedora aufgenommen", }, { date: "2024-09-22T22:00:00.000+00:00", number: "3", summary: "Neue Updates von openSUSE aufgenommen", }, { date: "2024-10-03T22:00:00.000+00:00", number: "4", summary: "Neue Updates von Debian aufgenommen", }, { date: "2024-12-01T23:00:00.000+00:00", number: "5", summary: "Neue Updates von openSUSE aufgenommen", }, ], status: "final", version: "5", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "Debian Linux", product: { name: "Debian Linux", product_id: "2951", product_identification_helper: { cpe: "cpe:/o:debian:debian_linux:-", }, }, }, ], category: "vendor", name: "Debian", }, { branches: [ { category: "product_name", name: "Fedora Linux", product: { name: "Fedora Linux", product_id: "74185", product_identification_helper: { cpe: "cpe:/o:fedoraproject:fedora:-", }, }, }, ], category: "vendor", name: "Fedora", }, { branches: [ { category: "product_name", name: "SUSE openSUSE", product: { name: "SUSE openSUSE", product_id: "T027843", product_identification_helper: { cpe: "cpe:/o:suse:opensuse:-", }, }, }, ], category: "vendor", name: "SUSE", }, { branches: [ { branches: [ { category: "product_version_range", name: "<5.0.43rc1", product: { name: "Zabbix Zabbix <5.0.43rc1", product_id: "T036718", }, }, { category: "product_version", name: "5.0.43rc1", product: { name: "Zabbix Zabbix 5.0.43rc1", product_id: "T036718-fixed", product_identification_helper: { cpe: "cpe:/a:zabbix:zabbix:5.0.43rc1", }, }, }, { category: "product_version_range", name: "<6.0.31rc1", product: { name: "Zabbix Zabbix <6.0.31rc1", product_id: "T036719", }, }, { category: "product_version", name: "6.0.31rc1", product: { name: "Zabbix Zabbix 6.0.31rc1", product_id: "T036719-fixed", product_identification_helper: { cpe: "cpe:/a:zabbix:zabbix:6.0.31rc1", }, }, }, { category: "product_version_range", name: "<6.4.16rc1", product: { name: "Zabbix Zabbix <6.4.16rc1", product_id: "T036720", }, }, { category: "product_version", name: "6.4.16rc1", product: { name: "Zabbix Zabbix 6.4.16rc1", product_id: "T036720-fixed", product_identification_helper: { cpe: "cpe:/a:zabbix:zabbix:6.4.16rc1", }, }, }, { category: "product_version_range", name: "<7.0.0rc3", product: { name: "Zabbix Zabbix <7.0.0rc3", product_id: "T036721", }, }, { category: "product_version", name: "7.0.0rc3", product: { name: "Zabbix Zabbix 7.0.0rc3", product_id: "T036721-fixed", product_identification_helper: { cpe: "cpe:/a:zabbix:zabbix:7.0.0rc3", }, }, }, ], category: "product_name", name: "Zabbix", }, ], category: "vendor", name: "Zabbix", }, ], }, vulnerabilities: [ { cve: "CVE-2024-22114", notes: [ { category: "description", text: "Es besteht eine Schwachstelle in Zabbix. Dieser Fehler besteht im Systeminformations-Widget im Global View Dashboard, mit dem die Anzahl der Hosts und andere Statistiken angezeigt werden können. Ein entfernter authentifizierter Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen.", }, ], product_status: { known_affected: [ "T036718", "2951", "T027843", "T036720", "T036721", "T036719", "74185", ], }, release_date: "2024-08-11T22:00:00.000+00:00", title: "CVE-2024-22114", }, { cve: "CVE-2024-22116", notes: [ { category: "description", text: "Es besteht eine Schwachstelle in Zabbix. Dieser Fehler besteht in der Sektion Monitoring Hosts aufgrund eines Code-Injektionsproblems. Ein entfernter authentifizierter Angreifer kann diese Schwachstelle zur Ausführung von beliebigem Code ausnutzen.", }, ], product_status: { known_affected: [ "T036718", "2951", "T027843", "T036720", "T036721", "T036719", "74185", ], }, release_date: "2024-08-11T22:00:00.000+00:00", title: "CVE-2024-22116", }, { cve: "CVE-2024-22121", notes: [ { category: "description", text: "Es besteht eine Schwachstelle in Zabbix. Dieser Fehler besteht im Agent MSI Installer und erlaubt es, wichtige Funktionen zu verändern oder zu entfernen. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um Daten zu manipulieren.", }, ], product_status: { known_affected: [ "T036718", "2951", "T027843", "T036720", "T036721", "T036719", "74185", ], }, release_date: "2024-08-11T22:00:00.000+00:00", title: "CVE-2024-22121", }, { cve: "CVE-2024-22122", notes: [ { category: "description", text: "Es besteht eine Schwachstelle in Zabbix. Dieser Fehler besteht aufgrund einer fehlenden Validierung des Feldes \"Number\", die es ermöglicht, einen SMS-Test mit einer speziell gestalteten Telefonnummer durchzuführen und zusätzliche AT-Befehle auf dem Modem auszuführen. Ein entfernter authentifizierter Angreifer kann diese Schwachstelle ausnutzen, um Sicherheitsmaßnahmen zu umgehen.", }, ], product_status: { known_affected: [ "T036718", "2951", "T027843", "T036720", "T036721", "T036719", "74185", ], }, release_date: "2024-08-11T22:00:00.000+00:00", title: "CVE-2024-22122", }, { cve: "CVE-2024-22123", notes: [ { category: "description", text: "Es besteht eine Schwachstelle in Zabbix. Dieser Fehler besteht aufgrund einer unsachgemäßen Struktur von Linux-Geräten, die es erlaubt, eine andere Datei als Server festzulegen, was dazu führt, dass Teile des Inhalts von Protokolldateien an die Benutzeroberfläche weitergegeben werden. Ein entfernter authentifizierter Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen.", }, ], product_status: { known_affected: [ "T036718", "2951", "T027843", "T036720", "T036721", "T036719", "74185", ], }, release_date: "2024-08-11T22:00:00.000+00:00", title: "CVE-2024-22123", }, { cve: "CVE-2024-36460", notes: [ { category: "description", text: "Es besteht eine Schwachstelle in Zabbix. Dieser Fehler besteht in den Front-End-Audit-Protokollen, da sie Passwörter ungeschützt im Klartext speichern. Ein entfernter authentifizierter Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen.", }, ], product_status: { known_affected: [ "T036718", "2951", "T027843", "T036720", "T036721", "T036719", "74185", ], }, release_date: "2024-08-11T22:00:00.000+00:00", title: "CVE-2024-36460", }, { cve: "CVE-2024-36461", notes: [ { category: "description", text: "Es besteht eine Schwachstelle in Zabbix. Dieser Fehler besteht aufgrund einer nicht vertrauenswürdigen Zeiger-Dereferenz, die es erlaubt, Speicherzeiger in der JavaScript-Engine zu verändern. Ein entfernter authentifizierter Angreifer kann diese Schwachstelle zur Ausführung von beliebigem Code ausnutzen.", }, ], product_status: { known_affected: [ "T036718", "2951", "T027843", "T036720", "T036721", "T036719", "74185", ], }, release_date: "2024-08-11T22:00:00.000+00:00", title: "CVE-2024-36461", }, { cve: "CVE-2024-36462", notes: [ { category: "description", text: "Es besteht eine Schwachstelle in Zabbix, die auf einen unkontrollierten Ressourcenverbrauch zurückzuführen ist. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen.", }, ], product_status: { known_affected: [ "T036718", "2951", "T027843", "T036720", "T036721", "T036719", "74185", ], }, release_date: "2024-08-11T22:00:00.000+00:00", title: "CVE-2024-36462", }, ], }
opensuse-su-2024:0384-1
Vulnerability from csaf_opensuse
Published
2024-12-01 17:01
Modified
2024-12-01 17:01
Summary
Security update for zabbix
Notes
Title of the patch
Security update for zabbix
Description of the patch
This update for zabbix fixes the following issues:
Zabbix was updated to 6.0.33:
- this version fixes CVE-2024-36461 and CVE-2024-22114
- New Features and Improvements
+ ZBXNEXT-9000 Changed query table for ASM disk group metrics in Oracle Database plugin and
Oracle by ODBC template Agent Templates
+ ZBXNEXT-9217 Added AWS Lambda by HTTP template Templates
+ ZBXNEXT-9293 Updated max supported MySQL version to 9.0 Proxy Server
+ ZBXNEXT-8657 Updated Zabbix health templates with new visualization Templates
+ ZBXNEXT-9143 Added index on auditlog recordsetid Server
+ ZBXNEXT-9081 Added Small Computer System Interface (SCSI) device type support to Zabbix agent 2 Smart plugin Agent
+ ZBXNEXT-6445 Added recovery expression for fuzzytime triggers in Linux and Windows templates,
removed fuzzytime triggers from active agent templates Templates
+ ZBXNEXT-9201 Updated max supported MySQL version to 8.4 Proxy Server
+ ZBXNEXT-9225 Updated max supported TimescaleDB version to 2.15 Server
+ ZBXNEXT-9226 Updated max supported MariaDB version to 11.4 Proxy Server
+ ZBXNEXT-8868 Added discovery and template for Azure VM Scale Sets Templates
- Bug Fixes
+ BX-24947 Fixed PHP runtime errors while processing frontend notifications Frontend
+ ZBX-24824 Improved loadable plugin connection broker Agent
+ ZBX-24583 Fixed inability to export/import web scenario with digest authentication API
+ ZBX-23905 Fixed double scroll in script dialogs Frontend
+ ZBX-18767 Fixed word breaks in flexible text input fields and trigger expressions Frontend
+ ZBX-24909 Fixed resolving of macro functions in the 'Item value' widget Frontend
+ ZBX-24859 Fixed JavaScript in S3 buckets discovery rule Templates
+ ZBX-24617 Fixed hardcoded region in AWS by HTTP template Templates
+ ZBX-24524 Fixed 'New values per second' statistic to include dependent items in calculation Proxy Server
+ ZBX-24821 Made 'execute_on' value being recorded in audit only for shell scripts Server
+ ZBX-23312 Fixed discovery edit form being saved incorrectly after dcheck update Frontend
+ ZBX-24773 Fixed duplicate item preprocessing in Kubernetes Kubelet by HTTP template Templates
+ ZBX-24514 Fixed standalone Zabbix server and Zabbix proxy not stopping when database is read-only Proxy Server
+ ZBX-23936 Fixed state and styling of readonly fields Frontend
+ ZBX-24520 Fixed an issue with incorrect translations used in several frontend places Frontend
+ ZBX-21815 Fixed issue with undefined offset for media type when it was deleted before saving the user Frontend
+ ZBX-24108 Fixed error in dashboard if Map widget contains map element that user doesn't have access to Frontend
+ ZBX-24569 Fixed old and added new items to Azure Virtual Machine template Templates
+ ZBX-24537 Fixed tags subfilter in Latest data kiosk mode Frontend
+ ZBX-24167 Fixed template linkage when item prototype collision is found Server
+ ZBX-23770 Improved monitoring user permissions documentation for Zabbix agent 2 Oracle plugin and Oracle by ODBC template Documentation
+ ZBX-24565 Removed redundant kernel header include, fixed musl compatibility issues (thanks to Alpine Linux maintainers for spotting this)
+ ZBX-24610 Fixed interface field appearance for discovered items without interface set Frontend
+ ZBX-24562 Fixed incorrect problem order in Problems by severity widget's hintbox Frontend
+ ZBX-23751 Fixed inability to pass an action filter condition without an 'operator' property, implying a default value of 'Equal' API
+ ZBX-21429 Prevented ability to disable all UI element access via role.update API API
+ ZBX-19271 Fixed inconsistent tag row rendering in different edit forms Frontend
+ ZBX-24539 Fixed incorrect threshold in trigger expression of Check Point Next Generation Firewall by SNMP template Templates
+ ZBX-24667 Fixed vm.memory.size[pused] item on Solaris Agent
+ ZBX-23781 Added storage volumes check in HPE iLO by HTTP template Templates
+ ZBX-24391 Fixed Zabbix agent to return net.tcp.socket.count result without error if IPv6 is disabled Agent
+ ZBX-24235 Fixed value misalignment in Item value widget Frontend
+ ZBX-24352 Fixed custom severity name usage in Geomap widget Frontend
+ ZBX-24665 Fixed potential problem with deprecated GCE Integrity feature Templates
+ ZBX-20993 Fixed Zabbix agent 2 MQTT plugin clientID to be generated by strict requirements Agent
+ ZBX-23426 Added dependent item with JavaScript preprocessing for edges SD-WAN in VMWare SD-WAN VeloCloud by HTTP template Templates
+ ZBX-24566 Fixed crash when expression macro is used in unsupported location Server
+ ZBX-24450 Fixed issue where graph could differ for data gathered from PostgreSQL and other databases Frontend
+ ZBX-24513 Fixed real-time export of rarely updated trends Server
+ ZBX-24163 Fixed submap addition in Map navigation tree widget to not append same submaps repeatedly Frontend
+ ZBX-23398 Fixed trigger expression constructor incorrectly showing '<' and '>' operators Frontend
+ ZBX-23584 Fixed error message being displayed when updating host after changing item status Frontend
+ ZBX-24635 Fixed datastore triggers in VMware templates Templates
Update to 6.0.31:
- New Features and Improvements
+ ZBXNEXT-9140 Added support for custom compartments in Oracle Cloud by HTTP templates Templates
+ ZBXNEXT-9034 Added Jira Data Center by JMX template Templates
+ ZBXNEXT-8682 Introduced a length limit of 512KB for item test values that server returns to Zabbix frontend Frontend Server
+ ZBXNEXT-8248 Added database filter macros to MySQL templates Templates
+ ZBXNEXT-6698 Removed absolute threshold and timeleft from OS template triggers of filesystem space Templates
+ ZBXNEXT-7930 Added user macro support for username and password fields in email media type Server
+ ZBXCTR-22 Refactored JavaScript filter functions for Kubernetes templates Templates
+ ZBXNEXT-9098 Added AWS ELB Network Load Balancer by HTTP template Templates
+ ZBXNEXT-6864 Replaced {HOST.CONN} with user macros in templates Templates
+ ZBXNEXT-9117 Updated max supported MariaDB version to 11.3 Proxy Server
+ ZBXNEXT-9026 Added Go compiler version to Zabbix agent 2 version output Agent
+ ZBXNEXT-8786 Changed 'odbc.discovery' keys to 'odbc.get' in MySQL by ODBC and Oracle by ODBC templates Templates
+ ZBXNEXT-8536 Added cbdhsvc service to macros in Windows agent templates Templates
+ ZBXNEXT-8861 Made changes and added more metrics to the FortiGate by SNMP template Templates
+ ZBXNEXT-8240 Added a new set of templates for integration with Oracle Cloud Infrastructure Templates
- Bug Fixes
+ ZBX-24483 Improved memory usage in Zabbix server/proxy trappers and in proxy
pollers when sending large configuration Proxy Server
+ ZBX-23073 Fixed URL widget resizing and dragging Frontend
+ ZBX-24574 Fixed HA node flipping between standby and active states Server
+ ZBX-24119 Fixed possible blocking of alert manager when it periodically pings database Server
+ ZBX-7998 Added VMware service username, password and URL check for empty values Proxy Server
+ ZBX-24402 Reduced main process connections to database during startup Proxy Server
+ ZBX-24369 Fixed filter behavior in monitoring pages after deleting filter parameters Frontend
+ ZBX-24484 Fixed Geomap widget console error when dragging map in widget edit mode Frontend
+ ZBX-23337 Improved supported version documentation for Oracle Database plugin and both templates Documentation
+ ZBX-24180 Fixed inability to import existing host or template when its dependent item prototype,
which is used in trigger prototypes or graph prototypes, would have a different master item API
+ ZBX-20871 Fixed inability to use LLD macro functions in Prometheus pattern and labels used in item prototype preprocessing API
+ ZBX-24527 Fixed unnecessary loading text being displayed in hintbox preloader Frontend
+ ZBX-24362 Fixed wrong Zabbix agent 2 loadable plugin process handling catching all child process exits Agent
+ ZBX-24470 Fixed scale of VMware vmware.vm.memory.size.compressed key Proxy Server
+ ZBX-24415 Added triggers for datastores in VMware templates Templates
+ ZBX-18094 Fixed multiple pie graph issues related to calculation of item angles Frontend
+ ZBX-20766 Fixed confusing port binding error message Agent Proxy Server
+ ZBX-24481 Fixed inability to unset value map from existing item or item prototype by passing
a version without valuemap parameter into configuration.import API
+ ZBX-24531 Fixed compile time data not being set for agent2 Agent
+ ZBX-24453 Implemented socket file cleanup when shutting down, added blocking of signals during important stages of startup Proxy Server
+ ZBX-24152 Fixed host form submission with Enter button if the form is opened in a popup and focus is in a flexible text area field Frontend
+ ZBX-23788 Added SNMP OID ifAlias in Network interfaces discovery Templates
+ ZBX-24482 Fixed the presence of the http_proxy field in the initial data Installation
+ ZBX-24210 Improved Zabbix agent 2 loadable plugin capacity code style Agent
+ ZBX-23951 Fixed issue of incorrect template matching when no UUID exists in export file API
+ ZBX-23953 Fixed CIDR network mask of VMware HV network interface Proxy Server
+ ZBX-24195 Fixed host IPMI username and password field max length Frontend
+ ZBX-24451 Added tags and changed a item in Proxmox template Templates
+ ZBX-23386 Fixed hintbox sizing to fit screen Frontend
+ ZBX-24024 Fixed OIDs for external sensors in APC UPC by SNMP templates Templates
+ ZBX-21751 Fixed node's loadavg item in Proxmox template Templates
+ ZBX-24315 Fixed linking template to host when some LLD macro paths already exist Server
+ ZBX-24172 Fixed Zabbix server issue with scheduled intervals on Feb 29th of leap year Server
+ ZBX-23407 Improved performance of retrieving last history values when primary keys are available API
+ ZBX-24246 Updated descriptions for family of MySQL and Oracle templates,
changed macro in the trigger 'Tablespace utilization is too high' for family of Oracle templates Templates
+ ZBX-23988 Renamed Agent2 Go module
+ ZBX-24222 Fixed incorrect item OIDs in the FortiGate by SNMP template Templates
+ ZBX-24393 Updated README in Redis by Zabbix agent 2 template Templates
+ ZBX-24298 Allowed any JNDI service providers back in JMX monitoring Java gateway
+ ZBX-19990 Separated LLD filter macros in Apache Tomcat by JMX template Templates
+ ZBX-24364 Added preprocessing steps for LLD rules in RabbitMQ templates Templates
+ ZBX-24368 Improved PostgreSQL autovacuum's count query Templates
+ ZBX-24282 Fixed Zabbix proxy to report error for not supported items Proxy Server
+ ZBX-19507 Fixed vmware.eventlog item to recover after event keys are reset Server
+ ZBX-24241 Fixed Zabbix server issue with random order of host groups for a host during real-time export Server
+ ZBX-24275 Fixed item prototype JSONPath preprocessing, added missing volume health metric and triggers in HPE MSA templates Templates
+ ZBX-24316 Fixed username macro in GridGain by JMX template Templates
+ ZBX-23719 Updated plugin-support to add duplicate flag handling Agent
+ ZBX-22429 Fixed typo in Zabbix proxy automake file Installation
+ ZBX-24264 Fixed value cache being filled with values of newly added items with triggers Server
+ ZBX-24088 Fixed problem filtering in maps with nested maps Frontend
+ ZBX-24206 Fixed line breaks in JavaScript in Cloudflare template Templates
+ ZBX-24236 Fixed nested transaction error in LLD when connection is terminated Server
+ ZBX-24134 Added sensor discovery in VMware Hypervisor template Templates
+ ZBX-23918 Fixed item pattern select popup to display all available items Frontend
+ ZBX-24190 Fixed items being updated incorrectly when configuring graph Frontend
+ ZBX-24289 Fixed issue with interface assignment for items copied from host to host Frontend
+ ZBX-23032 Added triggers for cluster status in VMware templates Templates
+ ZBX-23948 Added support for TabularData data when parsing an MBean attribute Java gateway
+ ZBX-23742 Fixed tag filtering logic for tags with one name and different types of operators API
+ ZBX-24271 Added delay in JavaScript execution for Azure Cost Management by HTTP template Templates
+ ZBX-24208 Fixed Oracle, MySQL plugin connection cache blocking Agent
+ ZBX-24202 Fixed JavaScript in AWS S3 bucket by HTTP template Templates
+ ZBX-23478 Fixed issue when missing locale error would not be displayed for user under certain conditions Frontend
+ ZBX-24166 Fixed Zabbix not being able to restart due to RTC and sockets not being closed before stopping Agent Proxy Server
+ ZBX-23853 Fixed duplicate agent check timestamps when time shifts back due to system clock synchronization Agent
Patchnames
openSUSE-2024-384
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for zabbix", title: "Title of the patch", }, { category: "description", text: "This update for zabbix fixes the following issues:\n\nZabbix was updated to 6.0.33:\n\n- this version fixes CVE-2024-36461 and CVE-2024-22114\n- New Features and Improvements\n\n + ZBXNEXT-9000 Changed query table for ASM disk group metrics in Oracle Database plugin and\n Oracle by ODBC template Agent Templates\n + ZBXNEXT-9217 Added AWS Lambda by HTTP template Templates\n + ZBXNEXT-9293 Updated max supported MySQL version to 9.0 Proxy Server\n + ZBXNEXT-8657 Updated Zabbix health templates with new visualization Templates\n + ZBXNEXT-9143 Added index on auditlog recordsetid Server\n + ZBXNEXT-9081 Added Small Computer System Interface (SCSI) device type support to Zabbix agent 2 Smart plugin Agent\n + ZBXNEXT-6445 Added recovery expression for fuzzytime triggers in Linux and Windows templates,\n removed fuzzytime triggers from active agent templates Templates\n + ZBXNEXT-9201 Updated max supported MySQL version to 8.4 Proxy Server\n + ZBXNEXT-9225 Updated max supported TimescaleDB version to 2.15 Server\n + ZBXNEXT-9226 Updated max supported MariaDB version to 11.4 Proxy Server\n + ZBXNEXT-8868 Added discovery and template for Azure VM Scale Sets Templates\n\n- Bug Fixes\n\n + BX-24947 Fixed PHP runtime errors while processing frontend notifications Frontend\n + ZBX-24824 Improved loadable plugin connection broker Agent\n + ZBX-24583 Fixed inability to export/import web scenario with digest authentication API\n + ZBX-23905 Fixed double scroll in script dialogs Frontend\n + ZBX-18767 Fixed word breaks in flexible text input fields and trigger expressions Frontend\n + ZBX-24909 Fixed resolving of macro functions in the 'Item value' widget Frontend\n + ZBX-24859 Fixed JavaScript in S3 buckets discovery rule Templates\n + ZBX-24617 Fixed hardcoded region in AWS by HTTP template Templates\n + ZBX-24524 Fixed 'New values per second' statistic to include dependent items in calculation Proxy Server\n + ZBX-24821 Made 'execute_on' value being recorded in audit only for shell scripts Server\n + ZBX-23312 Fixed discovery edit form being saved incorrectly after dcheck update Frontend\n + ZBX-24773 Fixed duplicate item preprocessing in Kubernetes Kubelet by HTTP template Templates\n + ZBX-24514 Fixed standalone Zabbix server and Zabbix proxy not stopping when database is read-only Proxy Server\n + ZBX-23936 Fixed state and styling of readonly fields Frontend\n + ZBX-24520 Fixed an issue with incorrect translations used in several frontend places Frontend\n + ZBX-21815 Fixed issue with undefined offset for media type when it was deleted before saving the user Frontend\n + ZBX-24108 Fixed error in dashboard if Map widget contains map element that user doesn't have access to Frontend\n + ZBX-24569 Fixed old and added new items to Azure Virtual Machine template Templates\n + ZBX-24537 Fixed tags subfilter in Latest data kiosk mode Frontend\n + ZBX-24167 Fixed template linkage when item prototype collision is found Server\n + ZBX-23770 Improved monitoring user permissions documentation for Zabbix agent 2 Oracle plugin and Oracle by ODBC template Documentation\n + ZBX-24565 Removed redundant kernel header include, fixed musl compatibility issues (thanks to Alpine Linux maintainers for spotting this)\n + ZBX-24610 Fixed interface field appearance for discovered items without interface set Frontend\n + ZBX-24562 Fixed incorrect problem order in Problems by severity widget's hintbox Frontend\n + ZBX-23751 Fixed inability to pass an action filter condition without an 'operator' property, implying a default value of 'Equal' API\n + ZBX-21429 Prevented ability to disable all UI element access via role.update API API\n + ZBX-19271 Fixed inconsistent tag row rendering in different edit forms Frontend\n + ZBX-24539 Fixed incorrect threshold in trigger expression of Check Point Next Generation Firewall by SNMP template Templates\n + ZBX-24667 Fixed vm.memory.size[pused] item on Solaris Agent\n + ZBX-23781 Added storage volumes check in HPE iLO by HTTP template Templates\n + ZBX-24391 Fixed Zabbix agent to return net.tcp.socket.count result without error if IPv6 is disabled Agent\n + ZBX-24235 Fixed value misalignment in Item value widget Frontend\n + ZBX-24352 Fixed custom severity name usage in Geomap widget Frontend\n + ZBX-24665 Fixed potential problem with deprecated GCE Integrity feature Templates\n + ZBX-20993 Fixed Zabbix agent 2 MQTT plugin clientID to be generated by strict requirements Agent\n + ZBX-23426 Added dependent item with JavaScript preprocessing for edges SD-WAN in VMWare SD-WAN VeloCloud by HTTP template Templates\n + ZBX-24566 Fixed crash when expression macro is used in unsupported location Server\n + ZBX-24450 Fixed issue where graph could differ for data gathered from PostgreSQL and other databases Frontend\n + ZBX-24513 Fixed real-time export of rarely updated trends Server\n + ZBX-24163 Fixed submap addition in Map navigation tree widget to not append same submaps repeatedly Frontend\n + ZBX-23398 Fixed trigger expression constructor incorrectly showing '<' and '>' operators Frontend\n + ZBX-23584 Fixed error message being displayed when updating host after changing item status Frontend\n + ZBX-24635 Fixed datastore triggers in VMware templates Templates\n\n\nUpdate to 6.0.31:\n\n- New Features and Improvements\n\n + ZBXNEXT-9140 Added support for custom compartments in Oracle Cloud by HTTP templates Templates\n + ZBXNEXT-9034 Added Jira Data Center by JMX template Templates\n + ZBXNEXT-8682 Introduced a length limit of 512KB for item test values that server returns to Zabbix frontend Frontend Server\n + ZBXNEXT-8248 Added database filter macros to MySQL templates Templates\n + ZBXNEXT-6698 Removed absolute threshold and timeleft from OS template triggers of filesystem space Templates\n + ZBXNEXT-7930 Added user macro support for username and password fields in email media type Server\n + ZBXCTR-22 Refactored JavaScript filter functions for Kubernetes templates Templates\n + ZBXNEXT-9098 Added AWS ELB Network Load Balancer by HTTP template Templates\n + ZBXNEXT-6864 Replaced {HOST.CONN} with user macros in templates Templates\n + ZBXNEXT-9117 Updated max supported MariaDB version to 11.3 Proxy Server\n + ZBXNEXT-9026 Added Go compiler version to Zabbix agent 2 version output Agent\n + ZBXNEXT-8786 Changed 'odbc.discovery' keys to 'odbc.get' in MySQL by ODBC and Oracle by ODBC templates Templates\n + ZBXNEXT-8536 Added cbdhsvc service to macros in Windows agent templates Templates\n + ZBXNEXT-8861 Made changes and added more metrics to the FortiGate by SNMP template Templates\n + ZBXNEXT-8240 Added a new set of templates for integration with Oracle Cloud Infrastructure Templates\n\n- Bug Fixes\n\n + ZBX-24483 Improved memory usage in Zabbix server/proxy trappers and in proxy\n pollers when sending large configuration Proxy Server\n + ZBX-23073 Fixed URL widget resizing and dragging Frontend\n + ZBX-24574 Fixed HA node flipping between standby and active states Server\n + ZBX-24119 Fixed possible blocking of alert manager when it periodically pings database Server\n + ZBX-7998 Added VMware service username, password and URL check for empty values Proxy Server\n + ZBX-24402 Reduced main process connections to database during startup Proxy Server\n + ZBX-24369 Fixed filter behavior in monitoring pages after deleting filter parameters Frontend\n + ZBX-24484 Fixed Geomap widget console error when dragging map in widget edit mode Frontend\n + ZBX-23337 Improved supported version documentation for Oracle Database plugin and both templates Documentation\n + ZBX-24180 Fixed inability to import existing host or template when its dependent item prototype,\n which is used in trigger prototypes or graph prototypes, would have a different master item API\n + ZBX-20871 Fixed inability to use LLD macro functions in Prometheus pattern and labels used in item prototype preprocessing API\n + ZBX-24527 Fixed unnecessary loading text being displayed in hintbox preloader Frontend\n + ZBX-24362 Fixed wrong Zabbix agent 2 loadable plugin process handling catching all child process exits Agent\n + ZBX-24470 Fixed scale of VMware vmware.vm.memory.size.compressed key Proxy Server\n + ZBX-24415 Added triggers for datastores in VMware templates Templates\n + ZBX-18094 Fixed multiple pie graph issues related to calculation of item angles Frontend\n + ZBX-20766 Fixed confusing port binding error message Agent Proxy Server\n + ZBX-24481 Fixed inability to unset value map from existing item or item prototype by passing\n a version without valuemap parameter into configuration.import API\n + ZBX-24531 Fixed compile time data not being set for agent2 Agent\n + ZBX-24453 Implemented socket file cleanup when shutting down, added blocking of signals during important stages of startup Proxy Server\n + ZBX-24152 Fixed host form submission with Enter button if the form is opened in a popup and focus is in a flexible text area field Frontend\n + ZBX-23788 Added SNMP OID ifAlias in Network interfaces discovery Templates\n + ZBX-24482 Fixed the presence of the http_proxy field in the initial data Installation\n + ZBX-24210 Improved Zabbix agent 2 loadable plugin capacity code style Agent\n + ZBX-23951 Fixed issue of incorrect template matching when no UUID exists in export file API\n + ZBX-23953 Fixed CIDR network mask of VMware HV network interface Proxy Server\n + ZBX-24195 Fixed host IPMI username and password field max length Frontend\n + ZBX-24451 Added tags and changed a item in Proxmox template Templates\n + ZBX-23386 Fixed hintbox sizing to fit screen Frontend\n + ZBX-24024 Fixed OIDs for external sensors in APC UPC by SNMP templates Templates\n + ZBX-21751 Fixed node's loadavg item in Proxmox template Templates\n + ZBX-24315 Fixed linking template to host when some LLD macro paths already exist Server\n + ZBX-24172 Fixed Zabbix server issue with scheduled intervals on Feb 29th of leap year Server\n + ZBX-23407 Improved performance of retrieving last history values when primary keys are available API\n + ZBX-24246 Updated descriptions for family of MySQL and Oracle templates,\n changed macro in the trigger 'Tablespace utilization is too high' for family of Oracle templates Templates\n + ZBX-23988 Renamed Agent2 Go module\n + ZBX-24222 Fixed incorrect item OIDs in the FortiGate by SNMP template Templates\n + ZBX-24393 Updated README in Redis by Zabbix agent 2 template Templates\n + ZBX-24298 Allowed any JNDI service providers back in JMX monitoring Java gateway\n + ZBX-19990 Separated LLD filter macros in Apache Tomcat by JMX template Templates\n + ZBX-24364 Added preprocessing steps for LLD rules in RabbitMQ templates Templates\n + ZBX-24368 Improved PostgreSQL autovacuum's count query Templates\n + ZBX-24282 Fixed Zabbix proxy to report error for not supported items Proxy Server\n + ZBX-19507 Fixed vmware.eventlog item to recover after event keys are reset Server\n + ZBX-24241 Fixed Zabbix server issue with random order of host groups for a host during real-time export Server\n + ZBX-24275 Fixed item prototype JSONPath preprocessing, added missing volume health metric and triggers in HPE MSA templates Templates\n + ZBX-24316 Fixed username macro in GridGain by JMX template Templates\n + ZBX-23719 Updated plugin-support to add duplicate flag handling Agent\n + ZBX-22429 Fixed typo in Zabbix proxy automake file Installation\n + ZBX-24264 Fixed value cache being filled with values of newly added items with triggers Server\n + ZBX-24088 Fixed problem filtering in maps with nested maps Frontend\n + ZBX-24206 Fixed line breaks in JavaScript in Cloudflare template Templates\n + ZBX-24236 Fixed nested transaction error in LLD when connection is terminated Server\n + ZBX-24134 Added sensor discovery in VMware Hypervisor template Templates\n + ZBX-23918 Fixed item pattern select popup to display all available items Frontend\n + ZBX-24190 Fixed items being updated incorrectly when configuring graph Frontend\n + ZBX-24289 Fixed issue with interface assignment for items copied from host to host Frontend\n + ZBX-23032 Added triggers for cluster status in VMware templates Templates\n + ZBX-23948 Added support for TabularData data when parsing an MBean attribute Java gateway\n + ZBX-23742 Fixed tag filtering logic for tags with one name and different types of operators API\n + ZBX-24271 Added delay in JavaScript execution for Azure Cost Management by HTTP template Templates\n + ZBX-24208 Fixed Oracle, MySQL plugin connection cache blocking Agent\n + ZBX-24202 Fixed JavaScript in AWS S3 bucket by HTTP template Templates\n + ZBX-23478 Fixed issue when missing locale error would not be displayed for user under certain conditions Frontend\n + ZBX-24166 Fixed Zabbix not being able to restart due to RTC and sockets not being closed before stopping Agent Proxy Server\n + ZBX-23853 Fixed duplicate agent check timestamps when time shifts back due to system clock synchronization Agent\n", title: "Description of the patch", }, { category: "details", text: "openSUSE-2024-384", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_0384-1.json", }, { category: "self", summary: "URL for openSUSE-SU-2024:0384-1", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/C6HFPCXWPBUGZ3BE7T5OXXTSGEHUCHFU/", }, { category: "self", summary: "E-Mail link for openSUSE-SU-2024:0384-1", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/C6HFPCXWPBUGZ3BE7T5OXXTSGEHUCHFU/", }, { category: "self", summary: "SUSE Bug 1229198", url: "https://bugzilla.suse.com/1229198", }, { category: "self", summary: "SUSE Bug 1229204", url: "https://bugzilla.suse.com/1229204", }, { category: "self", summary: "SUSE CVE CVE-2024-22114 page", url: "https://www.suse.com/security/cve/CVE-2024-22114/", }, { category: "self", summary: "SUSE CVE CVE-2024-36461 page", url: "https://www.suse.com/security/cve/CVE-2024-36461/", }, ], title: "Security update for zabbix", tracking: { current_release_date: "2024-12-01T17:01:25Z", generator: { date: "2024-12-01T17:01:25Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2024:0384-1", initial_release_date: "2024-12-01T17:01:25Z", revision_history: [ { date: "2024-12-01T17:01:25Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "zabbix-agent-6.0.33-bp156.2.3.1.aarch64", product: { name: "zabbix-agent-6.0.33-bp156.2.3.1.aarch64", product_id: "zabbix-agent-6.0.33-bp156.2.3.1.aarch64", }, }, { category: "product_version", name: "zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", product: { name: "zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", product_id: "zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", }, }, { category: "product_version", name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", product: { name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", product_id: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", }, }, { category: "product_version", name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", product: { name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", product_id: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", }, }, { category: "product_version", name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", product: { name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", product_id: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", }, }, { category: "product_version", name: "zabbix-server-6.0.33-bp156.2.3.1.aarch64", product: { name: "zabbix-server-6.0.33-bp156.2.3.1.aarch64", product_id: "zabbix-server-6.0.33-bp156.2.3.1.aarch64", }, }, { category: "product_version", name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", product: { name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", product_id: "zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", }, }, { category: "product_version", name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", product: { name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", product_id: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "zabbix-agent-6.0.33-bp156.2.3.1.i586", product: { name: "zabbix-agent-6.0.33-bp156.2.3.1.i586", product_id: "zabbix-agent-6.0.33-bp156.2.3.1.i586", }, }, { category: "product_version", name: "zabbix-proxy-6.0.33-bp156.2.3.1.i586", product: { name: "zabbix-proxy-6.0.33-bp156.2.3.1.i586", product_id: "zabbix-proxy-6.0.33-bp156.2.3.1.i586", }, }, { category: "product_version", name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", product: { name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", product_id: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", }, }, { category: "product_version", name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", product: { name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", product_id: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", }, }, { category: "product_version", name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", product: { name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", product_id: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", }, }, { category: "product_version", name: "zabbix-server-6.0.33-bp156.2.3.1.i586", product: { name: "zabbix-server-6.0.33-bp156.2.3.1.i586", product_id: "zabbix-server-6.0.33-bp156.2.3.1.i586", }, }, { category: "product_version", name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", product: { name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", product_id: "zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", }, }, { category: "product_version", name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", product: { name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", product_id: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "system-user-zabbix-6.0.33-bp156.2.3.1.noarch", product: { name: "system-user-zabbix-6.0.33-bp156.2.3.1.noarch", product_id: "system-user-zabbix-6.0.33-bp156.2.3.1.noarch", }, }, { category: "product_version", name: "zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", product: { name: "zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", product_id: "zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", }, }, { category: "product_version", name: "zabbix-ui-6.0.33-bp156.2.3.1.noarch", product: { name: "zabbix-ui-6.0.33-bp156.2.3.1.noarch", product_id: "zabbix-ui-6.0.33-bp156.2.3.1.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", product: { name: "zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", product_id: "zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", }, }, { category: "product_version", name: "zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", product: { name: "zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", product_id: "zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", }, }, { category: "product_version", name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", product: { name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", product_id: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", }, }, { category: "product_version", name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", product: { name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", product_id: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", }, }, { category: "product_version", name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", product: { name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", product_id: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", }, }, { category: "product_version", name: "zabbix-server-6.0.33-bp156.2.3.1.ppc64le", product: { name: "zabbix-server-6.0.33-bp156.2.3.1.ppc64le", product_id: "zabbix-server-6.0.33-bp156.2.3.1.ppc64le", }, }, { category: "product_version", name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", product: { name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", product_id: "zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", }, }, { category: "product_version", name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", product: { name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", product_id: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "zabbix-agent-6.0.33-bp156.2.3.1.s390x", product: { name: "zabbix-agent-6.0.33-bp156.2.3.1.s390x", product_id: "zabbix-agent-6.0.33-bp156.2.3.1.s390x", }, }, { category: "product_version", name: "zabbix-proxy-6.0.33-bp156.2.3.1.s390x", product: { name: "zabbix-proxy-6.0.33-bp156.2.3.1.s390x", product_id: "zabbix-proxy-6.0.33-bp156.2.3.1.s390x", }, }, { category: "product_version", name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", product: { name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", product_id: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", }, }, { category: "product_version", name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", product: { name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", product_id: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", }, }, { category: "product_version", name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", product: { name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", product_id: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", }, }, { category: "product_version", name: "zabbix-server-6.0.33-bp156.2.3.1.s390x", product: { name: "zabbix-server-6.0.33-bp156.2.3.1.s390x", product_id: "zabbix-server-6.0.33-bp156.2.3.1.s390x", }, }, { category: "product_version", name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", product: { name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", product_id: "zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", }, }, { category: "product_version", name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", product: { name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", product_id: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "zabbix-agent-6.0.33-bp156.2.3.1.x86_64", product: { name: "zabbix-agent-6.0.33-bp156.2.3.1.x86_64", product_id: "zabbix-agent-6.0.33-bp156.2.3.1.x86_64", }, }, { category: "product_version", name: "zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", product: { name: "zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", product_id: "zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", }, }, { category: "product_version", name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", product: { name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", product_id: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", }, }, { category: "product_version", name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", product: { name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", product_id: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", }, }, { category: "product_version", name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", product: { name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", product_id: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", }, }, { category: "product_version", name: "zabbix-server-6.0.33-bp156.2.3.1.x86_64", product: { name: "zabbix-server-6.0.33-bp156.2.3.1.x86_64", product_id: "zabbix-server-6.0.33-bp156.2.3.1.x86_64", }, }, { category: "product_version", name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", product: { name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", product_id: "zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", }, }, { category: "product_version", name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", product: { name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", product_id: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Package Hub 15 SP6", product: { name: "SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6", }, }, { category: "product_name", name: "openSUSE Leap 15.6", product: { name: "openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.6", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "system-user-zabbix-6.0.33-bp156.2.3.1.noarch as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:system-user-zabbix-6.0.33-bp156.2.3.1.noarch", }, product_reference: "system-user-zabbix-6.0.33-bp156.2.3.1.noarch", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-agent-6.0.33-bp156.2.3.1.aarch64 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.aarch64", }, product_reference: "zabbix-agent-6.0.33-bp156.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-agent-6.0.33-bp156.2.3.1.i586 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.i586", }, product_reference: "zabbix-agent-6.0.33-bp156.2.3.1.i586", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-agent-6.0.33-bp156.2.3.1.ppc64le as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", }, product_reference: "zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-agent-6.0.33-bp156.2.3.1.s390x as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.s390x", }, product_reference: "zabbix-agent-6.0.33-bp156.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-agent-6.0.33-bp156.2.3.1.x86_64 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.x86_64", }, product_reference: "zabbix-agent-6.0.33-bp156.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", }, product_reference: "zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-6.0.33-bp156.2.3.1.aarch64 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", }, product_reference: "zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-6.0.33-bp156.2.3.1.i586 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.i586", }, product_reference: "zabbix-proxy-6.0.33-bp156.2.3.1.i586", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", }, product_reference: "zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-6.0.33-bp156.2.3.1.s390x as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.s390x", }, product_reference: "zabbix-proxy-6.0.33-bp156.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-6.0.33-bp156.2.3.1.x86_64 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", }, product_reference: "zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", }, product_reference: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", }, product_reference: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", }, product_reference: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", }, product_reference: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", }, product_reference: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", }, product_reference: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", }, product_reference: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", }, product_reference: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", }, product_reference: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", }, product_reference: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", }, product_reference: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", }, product_reference: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", }, product_reference: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", }, product_reference: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", }, product_reference: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-6.0.33-bp156.2.3.1.aarch64 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.aarch64", }, product_reference: "zabbix-server-6.0.33-bp156.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-6.0.33-bp156.2.3.1.i586 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.i586", }, product_reference: "zabbix-server-6.0.33-bp156.2.3.1.i586", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-6.0.33-bp156.2.3.1.ppc64le as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.ppc64le", }, product_reference: "zabbix-server-6.0.33-bp156.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-6.0.33-bp156.2.3.1.s390x as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.s390x", }, product_reference: "zabbix-server-6.0.33-bp156.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-6.0.33-bp156.2.3.1.x86_64 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.x86_64", }, product_reference: "zabbix-server-6.0.33-bp156.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", }, product_reference: "zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.i586 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", }, product_reference: "zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", }, product_reference: "zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", }, product_reference: "zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", }, product_reference: "zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", }, product_reference: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", }, product_reference: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", }, product_reference: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", }, product_reference: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64 as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", }, product_reference: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "zabbix-ui-6.0.33-bp156.2.3.1.noarch as component of SUSE Package Hub 15 SP6", product_id: "SUSE Package Hub 15 SP6:zabbix-ui-6.0.33-bp156.2.3.1.noarch", }, product_reference: "zabbix-ui-6.0.33-bp156.2.3.1.noarch", relates_to_product_reference: "SUSE Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "system-user-zabbix-6.0.33-bp156.2.3.1.noarch as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:system-user-zabbix-6.0.33-bp156.2.3.1.noarch", }, product_reference: "system-user-zabbix-6.0.33-bp156.2.3.1.noarch", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-agent-6.0.33-bp156.2.3.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.aarch64", }, product_reference: "zabbix-agent-6.0.33-bp156.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-agent-6.0.33-bp156.2.3.1.i586 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.i586", }, product_reference: "zabbix-agent-6.0.33-bp156.2.3.1.i586", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-agent-6.0.33-bp156.2.3.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", }, product_reference: "zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-agent-6.0.33-bp156.2.3.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.s390x", }, product_reference: "zabbix-agent-6.0.33-bp156.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-agent-6.0.33-bp156.2.3.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.x86_64", }, product_reference: "zabbix-agent-6.0.33-bp156.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", }, product_reference: "zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-6.0.33-bp156.2.3.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", }, product_reference: "zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-6.0.33-bp156.2.3.1.i586 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.i586", }, product_reference: "zabbix-proxy-6.0.33-bp156.2.3.1.i586", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", }, product_reference: "zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-6.0.33-bp156.2.3.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.s390x", }, product_reference: "zabbix-proxy-6.0.33-bp156.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-6.0.33-bp156.2.3.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", }, product_reference: "zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", }, product_reference: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", }, product_reference: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", }, product_reference: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", }, product_reference: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", }, product_reference: "zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", }, product_reference: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", }, product_reference: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", }, product_reference: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", }, product_reference: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", }, product_reference: "zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", }, product_reference: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", }, product_reference: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", }, product_reference: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", }, product_reference: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", }, product_reference: "zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-6.0.33-bp156.2.3.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.aarch64", }, product_reference: "zabbix-server-6.0.33-bp156.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-6.0.33-bp156.2.3.1.i586 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.i586", }, product_reference: "zabbix-server-6.0.33-bp156.2.3.1.i586", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-6.0.33-bp156.2.3.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.ppc64le", }, product_reference: "zabbix-server-6.0.33-bp156.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-6.0.33-bp156.2.3.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.s390x", }, product_reference: "zabbix-server-6.0.33-bp156.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-6.0.33-bp156.2.3.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.x86_64", }, product_reference: "zabbix-server-6.0.33-bp156.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", }, product_reference: "zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.i586 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", }, product_reference: "zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", }, product_reference: "zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", }, product_reference: "zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", }, product_reference: "zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", }, product_reference: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", }, product_reference: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", }, product_reference: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", }, product_reference: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", }, product_reference: "zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "zabbix-ui-6.0.33-bp156.2.3.1.noarch as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:zabbix-ui-6.0.33-bp156.2.3.1.noarch", }, product_reference: "zabbix-ui-6.0.33-bp156.2.3.1.noarch", relates_to_product_reference: "openSUSE Leap 15.6", }, ], }, vulnerabilities: [ { cve: "CVE-2024-22114", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2024-22114", }, ], notes: [ { category: "general", text: "User with no permission to any of the Hosts can access and view host count & other statistics through System Information Widget in Global View Dashboard.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Package Hub 15 SP6:system-user-zabbix-6.0.33-bp156.2.3.1.noarch", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-ui-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:system-user-zabbix-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-ui-6.0.33-bp156.2.3.1.noarch", ], }, references: [ { category: "external", summary: "CVE-2024-22114", url: "https://www.suse.com/security/cve/CVE-2024-22114", }, { category: "external", summary: "SUSE Bug 1229198 for CVE-2024-22114", url: "https://bugzilla.suse.com/1229198", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Package Hub 15 SP6:system-user-zabbix-6.0.33-bp156.2.3.1.noarch", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-ui-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:system-user-zabbix-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-ui-6.0.33-bp156.2.3.1.noarch", ], }, ], scores: [ { cvss_v3: { baseScore: 4.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "SUSE Package Hub 15 SP6:system-user-zabbix-6.0.33-bp156.2.3.1.noarch", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-ui-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:system-user-zabbix-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-ui-6.0.33-bp156.2.3.1.noarch", ], }, ], threats: [ { category: "impact", date: "2024-12-01T17:01:25Z", details: "moderate", }, ], title: "CVE-2024-22114", }, { cve: "CVE-2024-36461", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2024-36461", }, ], notes: [ { category: "general", text: "Within Zabbix, users have the ability to directly modify memory pointers in the JavaScript engine.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Package Hub 15 SP6:system-user-zabbix-6.0.33-bp156.2.3.1.noarch", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-ui-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:system-user-zabbix-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-ui-6.0.33-bp156.2.3.1.noarch", ], }, references: [ { category: "external", summary: "CVE-2024-36461", url: "https://www.suse.com/security/cve/CVE-2024-36461", }, { category: "external", summary: "SUSE Bug 1229204 for CVE-2024-36461", url: "https://bugzilla.suse.com/1229204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Package Hub 15 SP6:system-user-zabbix-6.0.33-bp156.2.3.1.noarch", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-ui-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:system-user-zabbix-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-ui-6.0.33-bp156.2.3.1.noarch", ], }, ], scores: [ { cvss_v3: { baseScore: 9.1, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:H", version: "3.1", }, products: [ "SUSE Package Hub 15 SP6:system-user-zabbix-6.0.33-bp156.2.3.1.noarch", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-agent-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", "SUSE Package Hub 15 SP6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", "SUSE Package Hub 15 SP6:zabbix-ui-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:system-user-zabbix-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-agent-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-java-gateway-6.0.33-bp156.2.3.1.noarch", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-mysql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-postgresql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-proxy-sqlite-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-mysql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.aarch64", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.i586", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.ppc64le", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.s390x", "openSUSE Leap 15.6:zabbix-server-postgresql-6.0.33-bp156.2.3.1.x86_64", "openSUSE Leap 15.6:zabbix-ui-6.0.33-bp156.2.3.1.noarch", ], }, ], threats: [ { category: "impact", date: "2024-12-01T17:01:25Z", details: "critical", }, ], title: "CVE-2024-36461", }, ], }
gsd-2024-22114
Vulnerability from gsd
Modified
2024-01-06 06:02
Details
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Aliases
{ gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2024-22114", ], id: "GSD-2024-22114", modified: "2024-01-06T06:02:13.738110Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2024-22114", STATE: "RESERVED", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.", }, ], }, }, }, }
fkie_cve-2024-22114
Vulnerability from fkie_nvd
Published
2024-08-12 13:38
Modified
2024-12-04 15:28
Severity ?
4.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
4.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
4.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Summary
User with no permission to any of the Hosts can access and view host count & other statistics through System Information Widget in Global View Dashboard.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| security@zabbix.com | https://support.zabbix.com/browse/ZBX-25015 | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| zabbix | zabbix | * | |
| zabbix | zabbix | * | |
| zabbix | zabbix | * | |
| zabbix | zabbix | 7.0.0 | |
| zabbix | zabbix | 7.0.0 | |
| zabbix | zabbix | 7.0.0 | |
| zabbix | zabbix | 7.0.0 | |
| zabbix | zabbix | 7.0.0 | |
| zabbix | zabbix | 7.0.0 | |
| zabbix | zabbix | 7.0.0 | |
| zabbix | zabbix | 7.0.0 | |
| zabbix | zabbix | 7.0.0 | |
| zabbix | zabbix | 7.0.0 | |
| zabbix | zabbix | 7.0.0 | |
| zabbix | zabbix | 7.0.0 | |
| zabbix | zabbix | 7.0.0 | |
| zabbix | zabbix | 7.0.0 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:zabbix:zabbix:*:*:*:*:*:*:*:*", matchCriteriaId: "D5950D0D-9DFF-4B36-9AAF-43CBCEFE7101", versionEndIncluding: "5.0.42", versionStartIncluding: "5.0.0", vulnerable: true, }, { criteria: "cpe:2.3:a:zabbix:zabbix:*:*:*:*:*:*:*:*", matchCriteriaId: "D1D26F5C-A94F-4273-81D7-7DDF7541C3E7", versionEndIncluding: "6.0.30", versionStartIncluding: "6.0.0", vulnerable: true, }, { criteria: "cpe:2.3:a:zabbix:zabbix:*:*:*:*:*:*:*:*", matchCriteriaId: "E0DA6900-EB3E-4867-BD97-243686EECADD", versionEndIncluding: "6.4.15", versionStartIncluding: "6.4.0", vulnerable: true, }, { criteria: "cpe:2.3:a:zabbix:zabbix:7.0.0:alpha1:*:*:*:*:*:*", matchCriteriaId: "93EB5757-7F98-4428-9616-C30A647A6612", vulnerable: true, }, { criteria: "cpe:2.3:a:zabbix:zabbix:7.0.0:alpha2:*:*:*:*:*:*", matchCriteriaId: "DA00BDB5-433F-44E5-87AC-DA01C64B5DB3", vulnerable: true, }, { criteria: "cpe:2.3:a:zabbix:zabbix:7.0.0:alpha3:*:*:*:*:*:*", matchCriteriaId: "98C46C92-9D86-45CD-88FE-DFBB5502BB88", vulnerable: true, }, { criteria: "cpe:2.3:a:zabbix:zabbix:7.0.0:alpha4:*:*:*:*:*:*", matchCriteriaId: "B568E6DD-A6D1-4402-BB40-7DA2596A5BC8", vulnerable: true, }, { criteria: "cpe:2.3:a:zabbix:zabbix:7.0.0:alpha5:*:*:*:*:*:*", matchCriteriaId: "B9C3673B-8459-4C63-8E90-724D1D42A8BB", vulnerable: true, }, { criteria: "cpe:2.3:a:zabbix:zabbix:7.0.0:alpha6:*:*:*:*:*:*", matchCriteriaId: "7C9F6957-7526-4852-A579-DE556DBFAA97", vulnerable: true, }, { criteria: "cpe:2.3:a:zabbix:zabbix:7.0.0:alpha7:*:*:*:*:*:*", matchCriteriaId: "81A7A191-93DE-4C5D-963E-E8890FF7AACA", vulnerable: true, }, { criteria: "cpe:2.3:a:zabbix:zabbix:7.0.0:alpha8:*:*:*:*:*:*", matchCriteriaId: "AEE202D5-3C88-43A5-9328-FC78D0B9B8CF", vulnerable: true, }, { criteria: "cpe:2.3:a:zabbix:zabbix:7.0.0:alpha9:*:*:*:*:*:*", matchCriteriaId: "F88BFB75-7951-47D5-941F-3839E9E31FFA", vulnerable: true, }, { criteria: "cpe:2.3:a:zabbix:zabbix:7.0.0:beta1:*:*:*:*:*:*", matchCriteriaId: "8216247E-C160-4D2C-906E-9D8CD731B5C2", vulnerable: true, }, { criteria: "cpe:2.3:a:zabbix:zabbix:7.0.0:beta2:*:*:*:*:*:*", matchCriteriaId: "06548219-0DC3-4B5B-85D1-B1EE0FA30CD2", vulnerable: true, }, { criteria: "cpe:2.3:a:zabbix:zabbix:7.0.0:beta3:*:*:*:*:*:*", matchCriteriaId: "4D23985B-2F4D-41F6-B9D6-7B184FC7E447", vulnerable: true, }, { criteria: "cpe:2.3:a:zabbix:zabbix:7.0.0:rc1:*:*:*:*:*:*", matchCriteriaId: "97964B9B-6A5E-4547-8886-E81B0849A876", vulnerable: true, }, { criteria: "cpe:2.3:a:zabbix:zabbix:7.0.0:rc2:*:*:*:*:*:*", matchCriteriaId: "40992B5F-0D83-4D5C-9188-E84C369FF92F", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "User with no permission to any of the Hosts can access and view host count & other statistics through System Information Widget in Global View Dashboard.", }, { lang: "es", value: "El usuario sin permiso para ninguno de los Hosts puede acceder y ver el recuento de hosts y otras estadísticas a través del widget de información del sistema en Global View Dashboard.", }, ], id: "CVE-2024-22114", lastModified: "2024-12-04T15:28:53.450", metrics: { cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 1.4, source: "security@zabbix.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 1.4, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2024-08-12T13:38:15.627", references: [ { source: "security@zabbix.com", tags: [ "Vendor Advisory", ], url: "https://support.zabbix.com/browse/ZBX-25015", }, ], sourceIdentifier: "security@zabbix.com", vulnStatus: "Analyzed", weaknesses: [ { description: [ { lang: "en", value: "CWE-281", }, ], source: "security@zabbix.com", type: "Secondary", }, { description: [ { lang: "en", value: "CWE-281", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.