CVE-2024-45187 HIGH

CVE-2024-45187: Mage AI allows deleted users to use the terminal server with admin access, leading to remote code execution

Weakness CWE-613 · Insufficient session expiration
Published August 23, 2024
Last update November 25, 2024

CVSS base score

7.1/10
Attack vector Network
Attack complexity High
Privileges required Low
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Guest users in the Mage AI framework that remain logged in after their accounts are deleted, are mistakenly given high privileges and specifically given access to remotely execute arbitrary code through the Mage AI terminal server

Key dates

02Disclosure timeline

August 23, 2024 CVE published
November 25, 2024 Record updated