CVE-2024-45187

Guest users in the Mage AI framework that remain logged in after their accounts are deleted, are mistakenly given high privileges and specifically given access to remotely execute arbitrary code through the Mage AI terminal server

CVSS v3 7.1 HIGH

7.1^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.2 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://research.jfrog.com/vulnerabilities/mage-ai-deleted-users-rce-jfsa-2024-001039602/	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:mage:mage-ai:-:*:*:*:*:python:*:*

History

10 Oct 2025, 20:01

Type	Values Removed	Values Added
References	~~() https://research.jfrog.com/vulnerabilities/mage-ai-deleted-users-rce-jfsa-2024-001039602/ -~~	() https://research.jfrog.com/vulnerabilities/mage-ai-deleted-users-rce-jfsa-2024-001039602/ - Third Party Advisory
First Time		Mage mage-ai Mage
CPE		cpe:2.3:a:mage:mage-ai:-:::::python::

25 Nov 2024, 13:15

Type	Values Removed	Values Added
CWE		CWE-613

26 Aug 2024, 12:47

Type	Values Removed	Values Added
Summary		(es) Los usuarios invitados en el framework de Mage AI que permanecen conectados después de que se eliminan sus cuentas, reciben por error altos privilegios y específicamente acceso para ejecutar código arbitrario de forma remota a través del servidor terminal de Mage AI.

23 Aug 2024, 20:35

Type	Values Removed	Values Added
CWE		CWE-266

23 Aug 2024, 19:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-08-23 19:15

Updated : 2025-10-10 20:01

NVD link : CVE-2024-45187

Mitre link : CVE-2024-45187

CVE.ORG link : CVE-2024-45187

JSON object : View

Products Affected

mage

mage-ai

CWE

CWE-613

Insufficient Session Expiration

CWE-266

Incorrect Privilege Assignment

{"id": "CVE-2024-45187", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "reefs@jfrog.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.2}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "published": "2024-08-23T19:15:07.077", "references": [{"url": "https://research.jfrog.com/vulnerabilities/mage-ai-deleted-users-rce-jfsa-2024-001039602/", "tags": ["Third Party Advisory"], "source": "reefs@jfrog.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "reefs@jfrog.com", "description": [{"lang": "en", "value": "CWE-613"}]}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-266"}]}], "descriptions": [{"lang": "en", "value": "Guest users in the Mage AI framework that remain logged in after their accounts are deleted, are mistakenly given high privileges and specifically given access to remotely execute arbitrary code through the Mage AI terminal server"}, {"lang": "es", "value": "Los usuarios invitados en el framework de Mage AI que permanecen conectados despu\u00e9s de que se eliminan sus cuentas, reciben por error altos privilegios y espec\u00edficamente acceso para ejecutar c\u00f3digo arbitrario de forma remota a trav\u00e9s del servidor terminal de Mage AI."}], "lastModified": "2025-10-10T20:01:46.420", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mage:mage-ai:-:*:*:*:*:python:*:*", "vulnerable": true, "matchCriteriaId": "1E1BC86A-C706-4376-9880-C21A54E8DD24"}], "operator": "OR"}]}], "sourceIdentifier": "reefs@jfrog.com"}