CVE-2024-29189

CVSS 3.1 Score 7.4 of 10 (high)

Details

Published Mar 26, 2024
CWE ID 78

Summary

CVE-2024-29189 is a vulnerability found in the PyAnsys Geometry Python client library for the Ansys Geometry service and other CAD Ansys products. The vulnerability allows users to perform malicious operations on the machine where the script is executed by exploiting a method called _start_program in the product_instance.py file. The issue has been addressed in versions 0.3.3 and 0.4.12 of the library. This vulnerability has a base severity rating of HIGH, with a CVSS score of 7.4, and it poses a risk to organizations as it can lead to unauthorized access, compromising integrity and confidentiality of data on the affected machine.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-29189 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options