PT-2024-22804 · Ansible+3 · Ansible+3
Oskar-Zeinomahmalat-Sonarsource
·
Published
2024-03-29
·
Updated
2025-12-19
·
CVE-2024-29202
CVSS v3.1
9.9
Critical
| Vector | AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
JumpServer versions prior to 3.10.7
Description
JumpServer is an open source bastion host and an operation and maintenance security audit system. Attackers can exploit a Jinja2 template injection vulnerability in JumpServer's Ansible to execute arbitrary code within the Celery container. Since the Celery container runs with root privileges and has database access, attackers could steal sensitive information from all hosts or manipulate the database.
Recommendations
For versions prior to 3.10.7, update to version 3.10.7 to fix the vulnerability. As a temporary workaround, consider restricting access to the Celery container or limiting its privileges to minimize the risk of exploitation.
Exploit
Fix
Code Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ansible
Celery
Jinja2
Jumpserver