What is CVE-2024-29037?

CVE-2024-29037 is a critical-severity vulnerability in Acryldata Datahub-helm, classified under CWE-1394. CVSS score: 9.1/10. Published 2024-03-20.

How severe is CVE-2024-29037?

Critical severity. CVSS v3 base score is 9.1 out of 10.

Is CVE-2024-29037 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Acryldata Datahub-helm

CVE-2024-29037

datahub-helm provides the Kubernetes Helm charts for deploying Datahub and its dependencies on a Kubernetes cluster. Starting in version 0.1.143 and prior to version 0.2.182, due to configuration issues in the helm chart, if there was a su…

EPSS: 0.003 (52.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.1 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N.

Affected products

Acryldata Datahub-helm — versions >= 0.1.143, < 0.2.182

Weakness classification (CWE)

CWE-1394

Public proof-of-concept exploits

NaInSec/CVE-LIST

References

https://github.com/acryldata/datahub-helm/security/advisories/GHSA-82p6-9h7m-9h8j (x_refsource_CONFIRM)
https://github.com/acryldata/datahub-helm/commit/ea8a17860f053c63387b8309e1f77c0e1462a1b3 (x_refsource_MISC)

Frequently asked questions

What is CVE-2024-29037?: CVE-2024-29037 is a critical-severity vulnerability in Acryldata Datahub-helm, classified under CWE-1394. CVSS score: 9.1/10. Published 2024-03-20.
How severe is CVE-2024-29037?: Critical severity. CVSS v3 base score is 9.1 out of 10.
Is CVE-2024-29037 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.