Mage AI Framework Vulnerability Allows for Arbitrary Code Execution
CVE-2024-45187
Currently unrated
What is CVE-2024-45187?
A flaw in the Mage AI framework permits guest users to retain high privileges even after their accounts have been deleted. This oversight allows these users to remotely execute arbitrary code through the Mage AI terminal server. Such vulnerabilities can expose systems to significant risks, enabling unauthorized actions that could compromise the integrity and availability of sensitive data.