CVE-2024-45700: DoS vulnerability due to uncontrolled resource exhaustion
First published: Wed Apr 02 2025(Updated: )
Zabbix server is vulnerable to a DoS vulnerability due to uncontrolled resource exhaustion. An attacker can send specially crafted requests to the server, which will cause the server to allocate an excessive amount of memory and perform CPU-intensive decompression operations, ultimately leading to a service crash.
Credit: security@zabbix.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zabbix |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-45700?
CVE-2024-45700 is classified as a DoS (Denial of Service) vulnerability.
How do I fix CVE-2024-45700?
To mitigate CVE-2024-45700, ensure you are running the latest version of Zabbix Server which includes security patches.
What impact does CVE-2024-45700 have on Zabbix Server?
CVE-2024-45700 can lead to excessive memory allocation and high CPU usage, potentially causing the server to become unavailable.
Who is affected by CVE-2024-45700?
CVE-2024-45700 affects instances of Zabbix Server that are not patched against this vulnerability.
How can an attacker exploit CVE-2024-45700?
An attacker can exploit CVE-2024-45700 by sending specially crafted requests that trigger resource exhaustion in Zabbix Server.
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/references
- agent/title
- agent/type
- agent/first-publish-date
- agent/description
- agent/guess-ai
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/severity
- agent/author
- agent/source
- agent/last-modified-date
- agent/tags
- agent/event
- vendor/zabbix
- canonical/zabbix