CVE-2024-29020

JumpServer is an open source bastion host and an operation and maintenance security audit system. An authorized attacker can obtain sensitive information contained within playbook files if they manage to learn the playbook_id of another user. This breach of confidentiality can lead to information disclosure and exposing sensitive data. This vulnerability is fixed in v3.10.6.

CVSS v3 4.6 MEDIUM

4.6^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.2 / Impact : 3.4

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://github.com/jumpserver/jumpserver/security/advisories/GHSA-7mqc-23hr-cr62	Vendor Advisory
https://github.com/jumpserver/jumpserver/security/advisories/GHSA-7mqc-23hr-cr62	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:fit2cloud:jumpserver:*:*:*:*:*:*:*:*

History

09 Jan 2025, 17:20

Type	Values Removed	Values Added
References	~~() https://github.com/jumpserver/jumpserver/security/advisories/GHSA-7mqc-23hr-cr62 -~~	() https://github.com/jumpserver/jumpserver/security/advisories/GHSA-7mqc-23hr-cr62 - Vendor Advisory
First Time		Fit2cloud jumpserver Fit2cloud
CPE		cpe:2.3:a:fit2cloud:jumpserver::::::::

21 Nov 2024, 09:07

Type	Values Removed	Values Added
References	~~() https://github.com/jumpserver/jumpserver/security/advisories/GHSA-7mqc-23hr-cr62 -~~	() https://github.com/jumpserver/jumpserver/security/advisories/GHSA-7mqc-23hr-cr62 -
Summary		(es) JumpServer es un host bastión de código abierto y un sistema de auditoría de seguridad de operación y mantenimiento. Un atacante autorizado puede obtener información confidencial contenida en los archivos del libro de jugadas si logra conocer el ID del libro de jugadas de otro usuario. Esta violación de la confidencialidad puede llevar a la divulgación de información y a la exposición de datos confidenciales. Esta vulnerabilidad se solucionó en v3.10.6.

29 Mar 2024, 15:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-03-29 15:15

Updated : 2025-01-09 17:20

NVD link : CVE-2024-29020

Mitre link : CVE-2024-29020

CVE.ORG link : CVE-2024-29020

JSON object : View

Products Affected

fit2cloud

jumpserver

CWE

CWE-639

Authorization Bypass Through User-Controlled Key

{"id": "CVE-2024-29020", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.6, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 3.4, "exploitabilityScore": 1.2}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 1.6}]}, "published": "2024-03-29T15:15:11.437", "references": [{"url": "https://github.com/jumpserver/jumpserver/security/advisories/GHSA-7mqc-23hr-cr62", "tags": ["Vendor Advisory"], "source": "security-advisories@github.com"}, {"url": "https://github.com/jumpserver/jumpserver/security/advisories/GHSA-7mqc-23hr-cr62", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-639"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-639"}]}], "descriptions": [{"lang": "en", "value": "JumpServer is an open source bastion host and an operation and maintenance security audit system. An authorized attacker can obtain sensitive information contained within playbook files if they manage to learn the playbook_id of another user. This breach of confidentiality can lead to information disclosure and exposing sensitive data. This vulnerability is fixed in v3.10.6."}, {"lang": "es", "value": "JumpServer es un host basti\u00f3n de c\u00f3digo abierto y un sistema de auditor\u00eda de seguridad de operaci\u00f3n y mantenimiento. Un atacante autorizado puede obtener informaci\u00f3n confidencial contenida en los archivos del libro de jugadas si logra conocer el ID del libro de jugadas de otro usuario. Esta violaci\u00f3n de la confidencialidad puede llevar a la divulgaci\u00f3n de informaci\u00f3n y a la exposici\u00f3n de datos confidenciales. Esta vulnerabilidad se solucion\u00f3 en v3.10.6."}], "lastModified": "2025-01-09T17:20:18.197", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:fit2cloud:jumpserver:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07104EF2-D3BA-4E56-95DB-23114EF726F7", "versionEndExcluding": "3.10.6", "versionStartIncluding": "3.0.0"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}