CVE-2024-53865: Password-Like Properties Stored in Clear Text in IBM Z HMC Web Services API Library, zhmcclient
The IBM Z HMC Web Services API Library, zhmcclient, has a security vulnerability where password-like properties are stored in clear text within its API and
CVE-2024-11482 - Unauthenticated Access & Remote Code Execution Vulnerability in ESM 11.6.10
Cybersecurity researchers have recently discovered a critical vulnerability in ESM (Enterprise Security Manager) version 11.6.10. This vulnerability, assigned the ID CVE-2024-11482, allows unauthenticated
CVE-2024-36466 - Zabbix Authentication Bypass Exploit: Gaining Admin Access via Forged zbx_session Cookies
A critical security vulnerability (CVE-2024-36466) has been discovered in Zabbix, a popular open-source monitoring software. This vulnerability allows an attacker to bypass the authentication system
CVE-2024-42327 - Zabbix Frontend User Role SQL Injection Vulnerability with Exploit Details
CVE-2024-42327 is a critical SQL injection vulnerability found in the Zabbix frontend that allows non-admin user accounts to exploit the system, potentially leading to unauthorized
CVE-2024-36467: Unauthenticated User Gains Access to Group Management API in Zabbix Monitoring Tool
A security vulnerability in Zabbix Monitoring Tool (CVE-2024-36467) allows an authenticated user with basic API access to elevate privileges by adding themselves to any group,
Episode
00:00:00
00:00:00