CVE-2024-37382

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Aug 8, 2024

Updated: Aug 29, 2024

CWE ID 94

Summary

CVE-2024-37382 is a newly disclosed vulnerability affecting the Ab Initio Metadata Hub and Authorization Gateway versions prior to 4.3.1.1. This issue lies in the import host feature, which enables attackers to execute arbitrary code by manipulating the server configuration in a crafted manner. Successful exploitation of this vulnerability could result in significant security implications for affected organizations. It is recommended that users upgrade to the latest version of the software to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Ab Initio Metadata HUB

Affected Vendors

Ab Initio

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/wVFjpF
https://www.cve.org/CVERecord?id=CVE-2024-37382
https://nvd.nist.gov/vuln/detail/CVE-2024-37382

Back to Vulnerability Database