CVE-2024-29202 | JumpServer up to 3.10.6 Jinja2 Template code injection (GHSA-2vvr-vmvx-73ch)

Posted by Angelo Barbosa | Mar 29, 2024 | CVE

A vulnerability classified as critical was found in JumpServer up to 3.10.6. This vulnerability affects unknown code of the component Jinja2 Template Handler. The manipulation leads to code injection.

This vulnerability was named CVE-2024-29202. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-29202 | JumpServer up to 3.10.6 Jinja2 Template code injection (GHSA-2vvr-vmvx-73ch)

Related Posts

CVE-2024-24051 | Monoprice Select Mini V2 37.115.32 gcode File input validation

CVE-2024-25690 | Esri ArcGIS Enterprise Web App Builder up to 11.1 on ArcGIS Link cross site scripting

CVE-2024-2770 | Campcodes Complete Online Beauty Parlor Management System 1.0 /admin/contact-us.php email sql injection

CVE-2024-1201 | PanteraSoft HDD Health up to 4.2.0.112 unquoted search path