CVE-2024-42351

Name of the Vulnerable Software and Affected Versions Galaxy versions prior to release 21.05

Description Galaxy is a free, open-source system for analyzing data, authoring workflows, training and education, publishing tools, managing infrastructure, and more. An attacker can potentially replace the contents of public datasets resulting in data loss or tampering.

Recommendations For Galaxy versions prior to release 21.05, users are advised to upgrade to a newer version that includes the patch for this issue. At the moment, there is no information about other mitigation measures.