Description
Mage AI allows remote unauthenticated attackers to leak the terminal server command history of arbitrary users
References
https://research.jfrog.com/vulnerabilities/mage-ai-terminal-server-infoleak-jfsa-2024-001039574/
ExploitThird Party Advisory
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
5.3 · Medium
Information
Source identifier
Vulnerability status
Analyzed
Published
2024-08-22T06:15:04.360Z
1 year agoLast modified
2025-10-10T18:08:06.677Z
5 months ago