CVE-2024-29189
CVSS 3.1 Score 7.4 of 10 (high)
Details
Summary
CVE-2024-29189 is a vulnerability found in the PyAnsys Geometry Python client library for the Ansys Geometry service and other CAD Ansys products. The vulnerability allows users to perform malicious operations on the machine where the script is executed by exploiting a method called _start_program in the product_instance.py file. The issue has been addressed in versions 0.3.3 and 0.4.12 of the library. This vulnerability has a base severity rating of HIGH, with a CVSS score of 7.4, and it poses a risk to organizations as it can lead to unauthorized access, compromising integrity and confidentiality of data on the affected machine.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions