CVE-2024-51482 — AI Deep Analysis Summary

🚨 **What is this vulnerability?** * **Essence:** A **Boolean-based SQL Injection** flaw in ZoneMinder. * **Location:** Specifically in `web/ajax/event.php`. * **Consequences:** Attackers can manipulate database qu…

🛡️ **Root Cause? (CWE/Flaw)** * **CWE ID:** **CWE-89** (SQL Injection). * **The Flaw:** Improper neutralization of special elements used in an SQL command.…

👥 **Who is affected? (Versions/Components)** * **Product:** ZoneMinder (Open-source CCTV software). * **Affected Versions:** **1.37.64 and earlier** in the 1.37.X series. * **Components:** The web interface module…

🕵️ **What can hackers do? (Privileges/Data)** * **Data Theft:** Dump the `zm` database! Specifically, they can extract **Usernames and Password Hashes** from the `Users` table.…

🔑 **Is exploitation threshold high? (Auth/Config)** * **Auth Required:** **Yes.** The CVSS vector `PR:L` (Privileges Required: Low) indicates the attacker needs **low-level authentication** to exploit this. * **Comp…

💣 **Is there a public Exp? (PoC/Wild Exploitation)** * **Yes!…

🔍 **How to self-check? (Features/Scanning)** * **Scan:** Use **Nuclei** with the specific CVE template. * **Manual Check:** If you have access, try injecting boolean-based SQL payloads into `web/ajax/event.php` para…

🩹 **Is it fixed officially? (Patch/Mitigation)** * **Yes!…

🛑 **What if no patch? (Workaround)** * **Network Segmentation:** Restrict access to the ZoneMinder web interface.…

⏰ **Is it urgent? (Priority Suggestion)** * **Priority:** **CRITICAL / HIGH.** * **Reason:** 1. CVSS Score is high (Impact: H/H/H). 2. Public PoCs exist. 3.…