CVE-2024-36469
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-36469
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-36469.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-36469
- Downstream
- Published
- 2025-04-02T07:15:40Z
- Modified
- 2025-10-14T16:10:43.176728Z
- Severity
-
- 3.1 (Low) CVSS_V3 - CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Execution time for an unsuccessful login differs when using a non-existing username compared to using an existing one.
- References
Affected packages
Git / github.com/zabbix/zabbix
Affected versions
6.*
6.0.0
6.0.1
6.0.10
6.0.10rc1
6.0.10rc2
6.0.11
6.0.11rc1
6.0.11rc2
6.0.12
6.0.12rc1
6.0.12rc2
6.0.13
6.0.13rc1
6.0.14
6.0.14rc1
6.0.14rc2
6.0.15
6.0.15rc1
6.0.15rc2
6.0.16
6.0.16rc1
6.0.17
6.0.17rc1
6.0.17rc2
6.0.18
6.0.18rc1
6.0.19
6.0.19rc1
6.0.1rc1
6.0.1rc2
6.0.1rc3
6.0.1rc4
6.0.2
6.0.20
6.0.20rc1
6.0.21
6.0.21rc1
6.0.22
6.0.22rc1
6.0.23
6.0.23rc1
6.0.25
6.0.25rc1
6.0.26
6.0.26rc1
6.0.27
6.0.27rc1
6.0.28
6.0.28rc1
6.0.29
6.0.29rc1
6.0.2rc1
6.0.3
6.0.30
6.0.30rc1
6.0.31
6.0.31rc1
6.0.32
6.0.32rc1
6.0.33
6.0.33rc1
6.0.34
6.0.34rc1
6.0.34rc2
6.0.35
6.0.35rc1
6.0.36
6.0.36rc1
6.0.37
6.0.37rc1
6.0.38rc1
6.0.3rc1
6.0.4
6.0.4rc1
6.0.5
6.0.5rc1
6.0.6
6.0.6rc1
6.0.7
6.0.7rc1
6.0.8
6.0.8rc1
6.0.8rc2
6.0.9
6.0.9rc1
6.0.9rc2
Database specific
{
"vanir_signatures": [
{
"source": "https://github.com/zabbix/zabbix/commit/9bdb1c8ab4ee57c7f55ca648eab6b6d7df816e70",
"digest": {
"threshold": 0.9,
"line_hashes": [
"218241790889613263749723829365647413119",
"181211334055724909065451947901015648800",
"320688095896390955845391058003752071442",
"165613317246864125185046043417674714883",
"198922002892273503669281031937770881780",
"335617424418717674993696013793490182228"
]
},
"id": "CVE-2024-36469-5ffc5e1c",
"deprecated": false,
"signature_type": "Line",
"signature_version": "v1",
"target": {
"file": "src/zabbix_java/src/com/zabbix/gateway/GeneralInformation.java"
}
}
]
}