EUVD-2024-17624

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Lunary AI is vulnerable to session reuse attack, allowing unauthorized organization name changes.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2024-1902	12 Apr 202407:57	–	circl
CNNVD	lunary 安全漏洞	10 Apr 202400:00	–	cnnvd
CVE	CVE-2024-1902	10 Apr 202417:08	–	cve
Cvelist	CVE-2024-1902 Session Reuse Vulnerability in lunary-ai/lunary	10 Apr 202417:08	–	cvelist
NVD	CVE-2024-1902	10 Apr 202417:15	–	nvd
OSV	CVE-2024-1902	10 Apr 202417:15	–	osv
Positive Technologies	PT-2024-18409 · Lunary · Lunary	10 Apr 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-1902	5 Feb 202505:18	–	redhatcve
Vulnrichment	CVE-2024-1902 Session Reuse Vulnerability in lunary-ai/lunary	10 Apr 202417:08	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "6cc111cb-46cb-32d7-a5b6-ad27d54b0cca",
        "vendor": {
          "name": "lunary-ai"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "32b4dcfb-59fb-3f42-8d34-78029bd17d91",
        "product": {
          "name": "lunary-ai/lunary"
        },
        "product_version": "unspecified <1.2.8"
      },
      {
        "id": "a7c558fe-4a2d-320c-8273-b3e3763df763",
        "product": {
          "name": "lunary-ai/lunary"
        }
      }
    ]
  }
]

Source	Link
huntr	www.huntr.com/bounties/e536310e-abe7-4585-9cf6-21f77390a5e8
github	www.github.com/lunary-ai/lunary/commit/d8e2e73efd53ab4e92cf47bbf4b639a9f08853d2

03 Oct 2025 20:07Current

7.7High risk

Vulners AI Score7.7

CVSS 37.5

CVSS 3.17.5

EPSS0.00101

SSVC