Security Advisory

CVE-2024-24594

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-06 14:42:08

Last updated 2024-08-01 23:28:11

Assigner HiddenLayer

State PUBLISHED

Description

A cross-site scripting (XSS) vulnerability in all versions of the web server component of Allegro AI’s ClearML platform allows a remote attacker to execute a JavaScript payload when a user views the Debug Samples tab in the web UI.

← Browse all CVEs View on cve.org ↗