CVE-2024-46910

CVE-2024-46910: Apache Atlas: An authenticated user can perform XSS and potentially impersonate another user

Vendor Apache Software Foundation

Product Apache Atlas

Weakness CWE-80 · XSS · basic

Published February 13, 2025

Last update October 17, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

Description

An authenticated user can perform XSS and potentially impersonate another user. This issue affects Apache Atlas versions 2.3.0 and earlier. Users are recommended to upgrade to version 2.4.0, which fixes the issue.

Key dates

Disclosure timeline

February 13, 2025 CVE published

October 17, 2025 Record updated