CVE-2024-42333
CVSS 3.1 Score 2.7 of 10 (low)
Details
Published Nov 27, 2024
CWE ID 126
Summary
CVE-2024-42333 is a newly disclosed vulnerability affecting Zabbix Server. This issue permits an out-of-bounds read in the email.c file located within the libs/zbxmedia directory. By exploiting this vulnerability, an attacker can leak a small amount of server memory, potentially leading to denial-of-service attacks or information disclosure. The exact impact of this issue on system stability and security is still under investigation. Users are advised to apply relevant patches or updates as soon as they become available to mitigate the risk of exploitation.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Zabbix
Affected Vendors
- Zabbix LLC