CVE-2024-36469

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-36469
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-36469.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-36469
Downstream
Related
Published
2025-04-02T07:15:40.147Z
Modified
2026-03-09T23:54:15.376016Z
Severity
  • 3.1 (Low) CVSS_V3 - CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
Summary
[none]
Details

Execution time for an unsuccessful login differs when using a non-existing username compared to using an existing one.

References

Affected packages

Git / github.com/zabbix/zabbix

Affected ranges

Type
GIT
Repo
https://github.com/zabbix/zabbix
Events
Introduced
5203d2ea7d901cd33d148f20586e2155901a7faa
Fixed
9bdb1c8ab4ee57c7f55ca648eab6b6d7df816e70
Introduced
49955f1fb5c9168a8a24b053f7ade6b3d903143c
Fixed
05b8b05eefe2352580b4069745ca76fc5d82892d
Database specific 
{
    "versions": [
        {
            "introduced": "6.0.0"
        },
        {
            "fixed": "6.0.38"
        },
        {
            "introduced": "7.0.0"
        },
        {
            "fixed": "7.0.9"
        }
    ]
}

Affected versions

6.*
6.0.0
6.0.1
6.0.10
6.0.10rc1
6.0.10rc2
6.0.11
6.0.11rc1
6.0.11rc2
6.0.12
6.0.12rc1
6.0.12rc2
6.0.13
6.0.13rc1
6.0.14
6.0.14rc1
6.0.14rc2
6.0.15
6.0.15rc1
6.0.15rc2
6.0.16
6.0.16rc1
6.0.17
6.0.17rc1
6.0.17rc2
6.0.18
6.0.18rc1
6.0.19
6.0.19rc1
6.0.1rc1
6.0.1rc2
6.0.1rc3
6.0.1rc4
6.0.2
6.0.20
6.0.20rc1
6.0.21
6.0.21rc1
6.0.22
6.0.22rc1
6.0.23
6.0.23rc1
6.0.25
6.0.25rc1
6.0.26
6.0.26rc1
6.0.27
6.0.27rc1
6.0.28
6.0.28rc1
6.0.29
6.0.29rc1
6.0.2rc1
6.0.3
6.0.30
6.0.30rc1
6.0.31
6.0.31rc1
6.0.32
6.0.32rc1
6.0.33
6.0.33rc1
6.0.34
6.0.34rc1
6.0.34rc2
6.0.35
6.0.35rc1
6.0.36
6.0.36rc1
6.0.37
6.0.37rc1
6.0.38rc1
6.0.3rc1
6.0.4
6.0.4rc1
6.0.5
6.0.5rc1
6.0.6
6.0.6rc1
6.0.7
6.0.7rc1
6.0.8
6.0.8rc1
6.0.8rc2
6.0.9
6.0.9rc1
6.0.9rc2
7.*
7.0.0
7.0.0alpha1
7.0.0alpha2
7.0.0alpha3
7.0.0alpha4
7.0.0alpha6
7.0.0alpha7
7.0.0alpha8
7.0.0alpha9
7.0.0beta1
7.0.0beta2
7.0.0beta3
7.0.0rc1
7.0.0rc2
7.0.0rc3
7.0.1
7.0.1rc1
7.0.1rc2
7.0.2
7.0.2rc1
7.0.2rc2
7.0.3
7.0.3rc1
7.0.4
7.0.4rc1
7.0.5
7.0.5rc1
7.0.6
7.0.6rc1
7.0.7
7.0.7rc1
7.0.8
7.0.8rc1
7.0.8rc2
7.0.9rc1
7.0.9rc2

Database specific

unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "5.0.0"
            },
            {
                "fixed": "5.0.46"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "7.2.0"
            },
            {
                "fixed": "7.2.3"
            }
        ]
    }
]
vanir_signatures 
[
    {
        "signature_version": "v1",
        "target": {
            "file": "src/zabbix_java/src/com/zabbix/gateway/GeneralInformation.java"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "218241790889613263749723829365647413119",
                "181211334055724909065451947901015648800",
                "320688095896390955845391058003752071442",
                "165613317246864125185046043417674714883",
                "198922002892273503669281031937770881780",
                "335617424418717674993696013793490182228"
            ]
        },
        "source": "https://github.com/zabbix/zabbix/commit/9bdb1c8ab4ee57c7f55ca648eab6b6d7df816e70",
        "signature_type": "Line",
        "id": "CVE-2024-36469-5ffc5e1c",
        "deprecated": false
    },
    {
        "signature_version": "v1",
        "target": {
            "file": "src/zabbix_java/src/com/zabbix/gateway/GeneralInformation.java"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "190464864599865299809012152270943701561",
                "328906449186832088297660514526265364375",
                "286129909832987403477167540569786564614",
                "235869184425772621204330450374322454505",
                "79306967847642363028463673720861047964",
                "65107104445716602189932657718574404755"
            ]
        },
        "source": "https://github.com/zabbix/zabbix/commit/05b8b05eefe2352580b4069745ca76fc5d82892d",
        "signature_type": "Line",
        "id": "CVE-2024-36469-e7849cba",
        "deprecated": false
    }
]
source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-36469.json"