Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2025/02/04 11:38 p.m.11 views

CVE-2024-40629

JumpServer is an open-source Privileged Access Management PAM tool that provides DevOps and IT teams with on-demand and secure access to SSH, RDP, Kubernetes, Database and RemoteApp endpoints through a web browser. An attacker can exploit the Ansible playbook to write arbitrary files, leading to...

10CVSS8.3AI score0.01272EPSS
Exploits0References1
Circl
Circl
added 2024/07/18 8:8 p.m.12 views

CVE-2024-40629

creationtimestamp| type| source ---|---|--- 2024-07-18 20:08:23+00:00| seen| https://t.me/cvedetector/1166 2024-07-22 10:18:14+00:00| published-proof-of-concept| https://t.me/HackingInsights/6892 2024-08-01 17:20:44+00:00| seen| https://t.me/ViralCyber/4068 2024-08-04 18:47:46+00:00| seen|...

10CVSS7.5AI score0.01272EPSS
Exploits0References6
NVD
NVD
added 2024/07/18 5:15 p.m.37 views

CVE-2024-40629

JumpServer is an open-source Privileged Access Management PAM tool that provides DevOps and IT teams with on-demand and secure access to SSH, RDP, Kubernetes, Database and RemoteApp endpoints through a web browser. An attacker can exploit the Ansible playbook to write arbitrary files, leading to...

10CVSS0.01272EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/07/18 5:4 p.m.35 views

CVE-2024-40629 Arbitrary File Write in Ansible Playbooks leads to RCE in Jumpserver

JumpServer is an open-source Privileged Access Management PAM tool that provides DevOps and IT teams with on-demand and secure access to SSH, RDP, Kubernetes, Database and RemoteApp endpoints through a web browser. An attacker can exploit the Ansible playbook to write arbitrary files, leading to...

10CVSS9.8AI score0.01272EPSS
Exploits0References2
CVE
CVE
added 2024/07/18 5:4 p.m.64 views

CVE-2024-40629

CVE-2024-40629 affects JumpServer PAM. An attacker can misuse an Ansible playbook to write arbitrary files, triggering remote code execution in the Celery container. The Celery container runs as root and has database access, enabling access to secrets and the possibility to create an admin JumpSe...

10CVSS9.9AI score0.01272EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/07/18 5:4 p.m.54 views

CVE-2024-40629 Arbitrary File Write in Ansible Playbooks leads to RCE in Jumpserver

JumpServer is an open-source Privileged Access Management PAM tool that provides DevOps and IT teams with on-demand and secure access to SSH, RDP, Kubernetes, Database and RemoteApp endpoints through a web browser. An attacker can exploit the Ansible playbook to write arbitrary files, leading to...

10CVSS0.01272EPSS
Exploits0References2
OSV
OSV
added 2024/07/18 5:4 p.m.10 views

CVE-2024-40629 Arbitrary File Write in Ansible Playbooks leads to RCE in Jumpserver

JumpServer is an open-source Privileged Access Management PAM tool that provides DevOps and IT teams with on-demand and secure access to SSH, RDP, Kubernetes, Database and RemoteApp endpoints through a web browser. An attacker can exploit the Ansible playbook to write arbitrary files, leading to...

10CVSS9AI score0.01272EPSS
Exploits0References4
Rows per page
Query Builder