ZABBIX SUPPORT

Type: Defect (Security)

Priority: Major

Sorted by: Created descending

1–5 of 41 as at: 2025 Jun 12 13:08

Key	Summary	Assignee	Reporter	Status	Resolution	Created	Updated
ZBX-26257	SQL injection in Zabbix API (CVE-2024-36465)	Zabbix Support Team	Janis Nulle	Closed	Fixed	2025 Apr 01	2025 Apr 02
ZBX-26254	Reflected XSS vulnerability in /zabbix.php?action=export.valuemaps (CVE-2024-45699)	Zabbix Support Team	Janis Nulle	Closed	Fixed	2025 Apr 01	2025 Apr 23
ZBX-26253	DoS vulnerability due to uncontrolled resource exhaustion (CVE-2024-45700)	Zabbix Support Team	Janis Nulle	Closed	Fixed	2025 Apr 01	2025 Apr 02
ZBX-25635	Unauthenticated Zabbix frontend takeover when SSO is being used (CVE-2024-36466)	Zabbix Support Team	Vjaceslavs Bogdanovs	Closed	Fixed	2024 Nov 28	2025 Feb 26
ZBX-25626	JS - Internal strings in HTTP headers (CVE-2024-42330)	Zabbix Support Team	Vjaceslavs Bogdanovs	Closed	Fixed	2024 Nov 27	2025 Feb 27