Security Advisory
CVE-2024-24595
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Allegro AI’s open-source version of ClearML stores passwords in plaintext within the MongoDB instance, resulting in a compromised server leaking all user emails and passwords.