Authentication Bypass in JobX Affected by DataVane
CVE-2024-57491

8.8HIGH

Key Information:

Vendor: DataVane
Status: JobX
Vendor: CVE Published:; 20 August 2025

What is CVE-2024-57491?

An authentication bypass vulnerability present in JobX versions up to 1.0.1-RELEASE enables potential attackers to gain unauthorized access to sensitive API endpoints without requiring a valid authentication token. This flaw arises from the misuse of the preHandle function, which can be exploited to access protected resources, potentially leading to serious security breaches. Organizations using affected versions should prioritize patching to mitigate risks associated with unauthorized API access.

References

https://github.com/datavane/jobx/issues/48

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 20, 2025
Vulnerability Reserved
Jan 9, 2025

CVE-2024-57491 Data

JSON