EUVD-2024-0911

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Improper Input Validation in Apache Hop Engine before 2.8.0 affects Hop Server; upgrade recommended.

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2024-24683	19 Mar 202410:26	–	circl
CNNVD	Apache Hop Engine Security Vulnerability	19 Mar 202400:00	–	cnnvd
CVE	CVE-2024-24683	19 Mar 202408:20	–	cve
Cvelist	CVE-2024-24683 Apache Hop Engine: ID isn't escaped when generating HTML	19 Mar 202408:20	–	cvelist
Github Security Blog	Improper Input Validation vulnerability in Apache Hop Engine	19 Mar 202409:30	–	github
NVD	CVE-2024-24683	19 Mar 202409:15	–	nvd
OSV	GHSA-F6G6-PJGC-5CJ5 Improper Input Validation vulnerability in Apache Hop Engine	19 Mar 202409:30	–	osv
Positive Technologies	PT-2024-20490 · Apache · Apache Hop Engine	18 Mar 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-24683	23 May 202507:53	–	redhatcve
Veracode	Improper Input Validation	21 Mar 202406:44	–	veracode

[
  {
    "enisaIdVendor": [
      {
        "id": "3cdabf14-7698-37a5-9251-54e838b99c48",
        "vendor": {
          "name": "Apache Software Foundation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "ab4f68c9-9ada-3b34-b7ac-b5a0cd867757",
        "product": {
          "name": "Apache Hop Engine"
        },
        "product_version": "0 <2.8.0"
      },
      {
        "id": "da9b631d-7ba2-3388-93f1-efcf4a6deac9",
        "product": {
          "name": "Apache Hop Engine"
        }
      }
    ]
  }
]

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-24683
github	www.github.com/apache/hop
lists	www.lists.apache.org/thread/ts203zssv1n9qth1wdlhk2bhos3vcq6t
openwall	www.openwall.com/lists/oss-security/2024/03/18/1

03 Oct 2025 20:07Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.16.5

EPSS0.00592

SSVC