CVE-2024-37382

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Aug 8, 2024
Updated: Aug 29, 2024
CWE ID 94

Summary

CVE-2024-37382 is a newly disclosed vulnerability affecting the Ab Initio Metadata Hub and Authorization Gateway versions prior to 4.3.1.1. This issue lies in the import host feature, which enables attackers to execute arbitrary code by manipulating the server configuration in a crafted manner. Successful exploitation of this vulnerability could result in significant security implications for affected organizations. It is recommended that users upgrade to the latest version of the software to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Ab Initio Metadata HUB

Affected Vendors

  • Ab Initio