CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-45190

Mage AI allows remote users with the "Viewer" role to leak arbitrary files from the Mage server due to a path traversal in the "Pipeline Interaction" request

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.5%

CVSS Severity

CVSS v3 Score 6.5

References

https://research.jfrog.com/vulnerabilities/mage-ai-pipeline-interaction-request-remote-arbitrary-file-leak-jfsa-2024-001039605/

Products affected by CVE-2024-45190

Mage » Mage-Ai » Version: N/A

cpe:2.3:a:mage:mage-ai:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-45190

Products

Pricing

Contact Us