Moderate severityNVD Advisory· Published Feb 13, 2025· Updated Oct 17, 2025
Apache Atlas: An authenticated user can perform XSS and potentially impersonate another user
CVE-2024-46910
Description
An authenticated user can perform XSS and potentially impersonate another user.
This issue affects Apache Atlas versions 2.3.0 and earlier.
Users are recommended to upgrade to version 2.4.0, which fixes the issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.apache.atlas:apache-atlasMaven | >= 2.0.0, < 2.4.0 | 2.4.0 |
Affected products
2Patches
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- github.com/advisories/GHSA-x3v6-f5fr-4wwvghsaADVISORY
- lists.apache.org/thread/sqzp34l4cdk21zoq5g31qlsvr7jvb1fyghsavendor-advisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2024-46910ghsaADVISORY
- www.openwall.com/lists/oss-security/2025/02/12/2ghsaWEB
News mentions
0No linked articles in our index yet.