CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-46910: Apache Atlas: An authenticated user can perform XSS and potentially impersonate another user

Description

An authenticated user can perform XSS and potentially impersonate another user.

This issue affects Apache Atlas versions 2.3.0 and earlier.

Users are recommended to upgrade to version 2.4.0, which fixes the issue.

Vendor: Apache Software Foundation

Product: Apache Atlas

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.98% (scored less or equal to compared to others)

EPSS Date: 2025-03-14 (when was this score calculated)

2025-02-13 18:16:10 UTC
Github Advisory Database (Maven)

[org.apache.atlas:apache-atlas] Apache Atlas: An authenticated user can perform XSS and potentially impersonate another user
2025-02-14 00:32:26 UTC
CVE

Apache Atlas: An authenticated user can perform XSS and potentially impersonate another user