CVE-2024-53526 | composio 0.5.40 handle_tool_calls composio_openai/composio_claude/composio_julep Privilege Escalation (Issue 1073)

Inserito da Angelo Barbosa | Gen 8, 2025 | CVE

A vulnerability classified as critical was found in composio 0.5.40. This vulnerability affects the function handle_tool_calls. The manipulation of the argument composio_openai/composio_claude/composio_julep leads to Privilege Escalation.

This vulnerability was named CVE-2024-53526. The attack needs to be initiated within the local network. There is no exploit available.

CVE-2024-53526 | composio 0.5.40 handle_tool_calls composio_openai/composio_claude/composio_julep Privilege Escalation (Issue 1073)

Post correlati

CVE-2024-6655 | GTK gtk2/gtk3 injection

CVE-2024-5249 | Akana API Platform prior 2024.1.0 SAML Token authentication replay

CVE-2024-12908 | Delinea Secret Server 11.7.31 Protocol code injection

CVE-2024-28747 | ifm Smart PLC AC14xx/Smart PLC AC4xxS up to 4.3.17 hard-coded credentials (VDE-2024-012)