Main Vulnerability Database Vulnerabilities #VU128125

Exposed dangerous method or function in JumpServer - CVE-2024-29201

Published: March 29, 2024 / Updated: April 27, 2026

Vulnerability identifier: #VU128125

CSH Severity: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2024-29201

CWE-ID: CWE-749

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
JumpServer

Software vendor:
JumpServer

Description

The vulnerability allows a remote user to execute arbitrary code.

The vulnerability exists due to exposed dangerous functionality in the Ansible module when validating and executing user-supplied playbook templates. A remote user can create a specially crafted playbook template and run a job to execute arbitrary code.

Successful exploitation occurs within the Celery container, which runs with root privileges and has database access.

Remediation

Install security update from vendor's website.

External links

https://github.com/jumpserver/jumpserver/security/advisories/GHSA-pjpp-cm9x-6rwj

Exposed dangerous method or function in JumpServer - CVE-2024-29201

Description

Remediation

External links

Please verify you're human