CVE-2024-42325

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-42325
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42325.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-42325
Downstream
Published
2025-04-02T07:15:41.240Z
Modified
2026-02-03T07:37:51.019260Z
Severity
  • 3.5 (Low) CVSS_V3 - CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
Summary
[none]
Details

Zabbix API user.get returns all users that share common group with the calling user. This includes media and other information, such as login attempts, etc.

References

Affected packages

Git / github.com/zabbix/zabbix

Affected ranges

Type
GIT
Repo
https://github.com/zabbix/zabbix
Events
Introduced
49955f1fb5c9168a8a24b053f7ade6b3d903143c
Fixed
05b8b05eefe2352580b4069745ca76fc5d82892d
Introduced
5203d2ea7d901cd33d148f20586e2155901a7faa
Fixed
9bdb1c8ab4ee57c7f55ca648eab6b6d7df816e70

Affected versions

6.*
6.0.0
6.0.1
6.0.10
6.0.10rc1
6.0.10rc2
6.0.11
6.0.11rc1
6.0.11rc2
6.0.12
6.0.12rc1
6.0.12rc2
6.0.13
6.0.13rc1
6.0.14
6.0.14rc1
6.0.14rc2
6.0.15
6.0.15rc1
6.0.15rc2
6.0.16
6.0.16rc1
6.0.17
6.0.17rc1
6.0.17rc2
6.0.18
6.0.18rc1
6.0.19
6.0.19rc1
6.0.1rc1
6.0.1rc2
6.0.1rc3
6.0.1rc4
6.0.2
6.0.20
6.0.20rc1
6.0.21
6.0.21rc1
6.0.22
6.0.22rc1
6.0.23
6.0.23rc1
6.0.25
6.0.25rc1
6.0.26
6.0.26rc1
6.0.27
6.0.27rc1
6.0.28
6.0.28rc1
6.0.29
6.0.29rc1
6.0.2rc1
6.0.3
6.0.30
6.0.30rc1
6.0.31
6.0.31rc1
6.0.32
6.0.32rc1
6.0.33
6.0.33rc1
6.0.34
6.0.34rc1
6.0.34rc2
6.0.35
6.0.35rc1
6.0.36
6.0.36rc1
6.0.37
6.0.37rc1
6.0.38rc1
6.0.3rc1
6.0.4
6.0.4rc1
6.0.5
6.0.5rc1
6.0.6
6.0.6rc1
6.0.7
6.0.7rc1
6.0.8
6.0.8rc1
6.0.8rc2
6.0.9
6.0.9rc1
6.0.9rc2
7.*
7.0.0
7.0.1
7.0.1rc1
7.0.1rc2
7.0.2
7.0.2rc1
7.0.2rc2
7.0.3
7.0.3rc1
7.0.4
7.0.4rc1
7.0.5
7.0.5rc1
7.0.6
7.0.6rc1
7.0.7
7.0.7rc1
7.0.8
7.0.8rc1
7.0.8rc2
7.0.9rc1
7.0.9rc2

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-42325.json"
vanir_signatures 
[
    {
        "source": "https://github.com/zabbix/zabbix/commit/9bdb1c8ab4ee57c7f55ca648eab6b6d7df816e70",
        "digest": {
            "line_hashes": [
                "218241790889613263749723829365647413119",
                "181211334055724909065451947901015648800",
                "320688095896390955845391058003752071442",
                "165613317246864125185046043417674714883",
                "198922002892273503669281031937770881780",
                "335617424418717674993696013793490182228"
            ],
            "threshold": 0.9
        },
        "signature_type": "Line",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "src/zabbix_java/src/com/zabbix/gateway/GeneralInformation.java"
        },
        "id": "CVE-2024-42325-5ffc5e1c"
    },
    {
        "source": "https://github.com/zabbix/zabbix/commit/05b8b05eefe2352580b4069745ca76fc5d82892d",
        "digest": {
            "line_hashes": [
                "190464864599865299809012152270943701561",
                "328906449186832088297660514526265364375",
                "286129909832987403477167540569786564614",
                "235869184425772621204330450374322454505",
                "79306967847642363028463673720861047964",
                "65107104445716602189932657718574404755"
            ],
            "threshold": 0.9
        },
        "signature_type": "Line",
        "signature_version": "v1",
        "deprecated": false,
        "target": {
            "file": "src/zabbix_java/src/com/zabbix/gateway/GeneralInformation.java"
        },
        "id": "CVE-2024-42325-e7849cba"
    }
]