CVE-2024-45700 MEDIUM

CVE-2024-45700: DoS vulnerability due to uncontrolled resource exhaustion

Vendor Zabbix
Product Zabbix
Weakness CWE-770 · Uncontrolled resource consumption
Published April 2, 2025
Last update November 3, 2025

CVSS base score

6.0/10
Attack vector Adjacent
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Zabbix server is vulnerable to a DoS vulnerability due to uncontrolled resource exhaustion. An attacker can send specially crafted requests to the server, which will cause the server to allocate an excessive amount of memory and perform CPU-intensive decompression operations, ultimately leading to a service crash.

Key dates

02Disclosure timeline

April 2, 2025 CVE published
November 3, 2025 Record updated