CVE-2024-8238
- Source
- https://cve.org/CVERecord?id=CVE-2024-8238
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-8238.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-8238
- Aliases
- Published
- 2025-03-20T10:15:41.613Z
- Modified
- 2026-04-10T05:19:48.540583Z
- Severity
-
- 8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
In version 3.22.0 of aimhubio/aim, the AimQL query language uses an outdated version of the safergetattr() function from RestrictedPython. This version does not protect against the str.formatmap() method, allowing an attacker to leak server-side secrets or potentially gain unrestricted code execution. The vulnerability arises because str.formatmap() can read arbitrary attributes of Python objects, enabling attackers to access sensitive variables such as os.environ. If an attacker can write files to a known location on the Aim server, they can use str.formatmap() to load a malicious .dll/.so file into the Python interpreter, leading to unrestricted code execution.
- References
Affected packages
Git / github.com/aimhubio/aim
Affected versions
Other
pre-launch
v0.*
v0.1.0
v0.1.1
v0.2.0
v0.2.1
v0.2.2
v0.2.3
v0.2.4
v0.2.5
v0.2.6
v1.*
v1.0.0
v1.1.0
v1.1.1
v1.2.7rc1
v2.*
v2.1.6
v2.2.0
v2.3.0
v2.4.0
v2.5.0
v2.6.0
v2.7.0
v3.*
v3.0.0
v3.0.0-beta5
v3.0.0-beta6
v3.0.1
v3.0.2
v3.1.0
v3.1.1
v3.17.0
v3.17.1
v3.17.2
v3.17.3
v3.17.4
v3.17.5
v3.18.1
v3.19.0
v3.19.1
v3.2.0
v3.20.1
v3.21.0
v3.22.0
v3.3.0
v3.3.1
v3.3.2
v3.4.0
v3.5.0