27Şub
CVE-2024-25723 | ZenML up to 0.42.1/0.43.0/0.44.3/0.46.6 on Python REST API Endpoint activate Privilege Escalation
A vulnerability was found in ZenML up to 0.42.1/0.43.0/0.44.3/0.46.6 on Python. It has been declared as critical. This vulnerability affects unknown code of the file /api/v1/users/{user_name_or_id}/activate of the component REST API Endpoint. The manipulation leads to Privilege Escalation. This vulnerability was named CVE-2024-25723. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.