VYPR
Unrated severityNVD Advisory· Published Feb 6, 2024· Updated Aug 1, 2024

CVE-2024-24594

CVE-2024-24594

Description

A cross-site scripting (XSS) vulnerability in all versions of the web server component of Allegro AI’s ClearML platform allows a remote attacker to execute a JavaScript payload when a user views the Debug Samples tab in the web UI.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Clearml/Clearmlllm-fuzzy
    Range: all versions
  • Allegro.AI/ClearMLv5
    Range: 0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.