Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 6:28 a.m.9 views

CVE-2024-2213

An issue was discovered in zenml-io/zenml versions up to and including 0.55.4. Due to improper authentication mechanisms, an attacker with access to an active user session can change the account password without needing to know the current password. This vulnerability allows for unauthorized...

3.3CVSS4.1AI score0.00241EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/01/03 12:0 a.m.9 views

ZenML < 0.56.3 Vulnerability - CVE-2024-2213

The version of ZenML installed on the remote host is prior to 0.56.3. It is, therefore, affected by an improper authentication mechanisms. An attacker with access to an active user session can change the account password without needing to know the current password. This vulnerability allows for...

3.3CVSS4.9AI score0.00241EPSS
Exploits1References3
NVD
NVD
added 2024/06/06 7:15 p.m.16 views

CVE-2024-2213

An issue was discovered in zenml-io/zenml versions up to and including 0.55.4. Due to improper authentication mechanisms, an attacker with access to an active user session can change the account password without needing to know the current password. This vulnerability allows for unauthorized...

3.3CVSS0.00241EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/06/06 6:19 p.m.25 views

CVE-2024-2213 Improper Authentication in zenml-io/zenml

An issue was discovered in zenml-io/zenml versions up to and including 0.55.4. Due to improper authentication mechanisms, an attacker with access to an active user session can change the account password without needing to know the current password. This vulnerability allows for unauthorized...

3.3CVSS0.00241EPSS
Exploits1References2
CVE
CVE
added 2024/06/06 6:19 p.m.67 views

CVE-2024-2213

CVE-2024-2213 affects zenml-io/zenml up to and including 0.55.4. The root cause is improper authentication that lets an attacker with an active session change a user’s password without the current password, enabling unauthorized account takeover. The issue has been fixed in version 0.56.3. In pub...

3.3CVSS3.9AI score0.00241EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder