From 0cce7d6e6a096341c1a7dfdcbddf27e765c235e9 Mon Sep 17 00:00:00 2001
From: Shachar Menashe <shacharm@jfrog.com>
Date: Thu, 22 Aug 2024 10:39:15 +0300
Subject: [PATCH] vulnerabilities: Add CVE-2024-8072

---
 ...nal-server-infoleak-jfsa-2024-001039574.md | 48 +++++++++++++++++++
 1 file changed, 48 insertions(+)
 create mode 100644 vulnerabilities/mage-ai-terminal-server-infoleak-jfsa-2024-001039574.md

diff --git a/vulnerabilities/mage-ai-terminal-server-infoleak-jfsa-2024-001039574.md b/vulnerabilities/mage-ai-terminal-server-infoleak-jfsa-2024-001039574.md
new file mode 100644
index 0000000000..f0a59fb402
--- /dev/null
+++ b/vulnerabilities/mage-ai-terminal-server-infoleak-jfsa-2024-001039574.md
@@ -0,0 +1,48 @@
+---
+description: CVE-2024-8072, MEDIUM, Mage AI Terminal Server Infoleak
+title: Mage AI Terminal Server Infoleakusers
+date_published: "2024-08-22"
+last_updated: "2024-08-22"
+xray_id: JFSA-2024-001039574
+vul_id: CVE-2024-8072
+cvss: 5.3
+severity: medium
+discovered_by: Ori Hollander
+type: vulnerability
+
+---
+
+## Summary
+
+Mage AI allows remote unauthenticated attackers to leak the terminal server command history of arbitrary users
+
+## Component
+
+mage-ai
+
+## Affected versions
+
+(,)
+
+## Description
+
+Mage AI allows remote unauthenticated attackers to leak the terminal server command history of arbitrary users
+
+## PoC
+
+Leaking terminal command history for user #1 - 
+
+```
+ws://localhost:6789/websocket/terminal?term_name=1--PortalTerminal--Main%20Mage
+```
+
+
+
+## Vulnerability Mitigations
+
+No mitigations are supplied for this issue
+
+## References
+
+No references are supplied for this issue
+