CVE-2024-21571

Name of the Vulnerable Software and Affected Versions Code Agent versions all

Description A remote code execution vulnerability has been identified, enabling an attacker to execute arbitrary code within the Code Agent container. Exploiting this issue requires an attacker to have network access to the Code Agent within the deployment environment. External exploitation is unlikely and depends on cluster misconfigurations and/or chaining with another vulnerability. However, internal exploitation could still be possible with a cluster misconfiguration.

Recommendations For all versions, at the moment, there is no information about a newer version that contains a fix for this vulnerability.