CVE-2024-52577

Published Feb 14, 2025

Last updated a year ago

CVSS critical 9.5

Overview

AI description

Automated description summarized from trusted sources.

CVE-2024-52577 is a remote code execution (RCE) vulnerability found in Apache Ignite, an open-source distributed database and computing platform. This flaw stems from insecure deserialization, where certain Ignite endpoints fail to properly enforce configured Class Serialization Filters. This oversight allows an attacker to bypass existing security mechanisms designed to prevent the deserialization of untrusted objects. By crafting a malicious Ignite message containing a serialized object, an attacker can exploit this vulnerability. If the server's classpath includes a "gadget class" corresponding to the malicious object, the deserialization process will execute arbitrary code on the Apache Ignite server. This issue impacts Apache Ignite versions 2.6.0 through 2.16.x.

Description
In Apache Ignite versions from 2.6.0 and before 2.17.0, configured Class Serialization Filters are ignored for some Ignite endpoints. The vulnerability could be exploited if an attacker manually crafts an Ignite message containing a vulnerable object whose class is present in the Ignite server classpath and sends it to Ignite server endpoints. Deserialization of such a message by the Ignite server may result in the execution of arbitrary code on the Apache Ignite server side.
Source
security@apache.org
NVD status
Analyzed
Products
ignite

Risk scores

CVSS 4.0

Type
Secondary
Base score
9.5
Impact score
-
Exploitability score
-
Vector string
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Severity
CRITICAL

CVSS 3.1

Type
Primary
Base score
9
Impact score
6
Exploitability score
2.2
Vector string
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Severity
CRITICAL

Weaknesses

security@apache.org
CWE-502

Social media

Hype score
Not currently trending

  1. 🟡 Apache Ignite に情報漏洩の脆弱性、CVE-2024-52577 が修正される 🔗 https://t.co/nakVItSTrg #セキュリティ #ゆるセキュ

    @yuru_sec

    1 Jun 2026

    0 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. تم الكشف عن ثغرة في Apache Ignite تتيح التنفيذ العشوائي عبر التحليل البنائي. الرمز المرجعي للثغرة هو CVE-2024-52577. A vulnerability has been discovered in Apache Ignite that allows for remote code execution

    @fad_777

    31 May 2026

    33 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. CVE-2024-52577 Apache Ignite RCE via Deserialization Exploit: https://t.co/SwPcjbMaFl #rce #vulnerability #apache #cve #deserialization

    @blackstormsecbr

    28 May 2026

    289 Impressions

    0 Retweets

    3 Likes

    4 Bookmarks

    0 Replies

    0 Quotes

  4. Top 5 Trending CVEs: 1 - CVE-1999-0997 2 - CVE-2026-45659 3 - CVE-2026-23652 4 - CVE-2026-45585 5 - CVE-2024-52577 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W

    @CVEShield

    28 May 2026

    98 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  5. CVE-2024-52577 Apache Ignite RCE via Deserialization Exploit https://t.co/gp4jyxBDna

    @Dinosn

    27 May 2026

    2022 Impressions

    5 Retweets

    16 Likes

    6 Bookmarks

    0 Replies

    0 Quotes

  6. Apache Igniteでリモートコードが実行できる脆弱性(CVE-2024-52577) #セキュリティ対策Lab #セキュリティ https://t.co/27ryPENAoj

    @securityLab_jp

    21 Feb 2025

    22 Impressions

    1 Retweet

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  7. ⚠️ Vulnerability Alert: Critical Flaw in Apache Ignite 📅 Timeline: Disclosure: 2024-01-01, Patch: 2024-01-15 🆔cveId: CVE-2024-52577 cvssSeverity: Critical 🔴 🛠️exploitMaturity: Proof-of-Concept 📂affectedVersions: 2.6.0, 2.7.0, 2.8.0, 2.9.0, 2.10.0, 2.11.0, 2.12.0, 2.13.0,

    @syedaquib77

    19 Feb 2025

    21 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  8. 🏴‍☠️ Una vulnerabilidad crítica en Apache Ignite (CVE-2024-52577) expone los sistemas a ataques de ejecución remota de código (RCE) debido a la aplicación incorrecta de filtros de serialización de clases en los puntos finales del servidor. 🧉 https://t.co/4xcr4eksMv

    @MarquisioX

    19 Feb 2025

    33 Impressions

    0 Retweets

    2 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  9. A critical vulnerability (CVE-2024-52577) in Apache Ignite allows remote code execution on affected servers, CVSSv4 score of 9.5. Upgrade to 2.17.0 to mitigate risks. 🚨 #ApacheIgnite #RemoteCodeExecution #USA link: https://t.co/20Pol781ra https://t.co/ZMgjCOBx0B

    @TweetThreatNews

    19 Feb 2025

    44 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  10. Critical Flaw in Apache Ignite (CVE-2024-52577) Allows Attackers to Execute Code Remotely https://t.co/qmdvkhC3yl

    @itsecuritynewsl

    19 Feb 2025

    16 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  11. OSSの分散データベースApache Igniteに重大(Critical)な遠隔コード実行の脆弱性。CVE-2024-52577はCVSSスコア9.5で、脆弱なオブジェクトを含む悪性Igniteメッセージをサーバに送りつけることでのデシリアライゼーションにより発現。 https://t.co/pcnqHTwmrJ

    @__kokumoto

    19 Feb 2025

    805 Impressions

    2 Retweets

    7 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  12. 🚨 CVE-2024-52577 ⚠️🔴 CRITICAL (9.5) 🏢 Apache Software Foundation - Apache Ignite 🏗️ 2.6.0 🔗 https://t.co/AxeEzyw2Ch #CyberCron #VulnAlert https://t.co/7Gun95kd66

    @cybercronai

    16 Feb 2025

    190 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    1 Quote

  13. CVE-2024-52577: Apache Ignite: Possible RCE when deserializing incoming messages by the server node https://t.co/vZY5vqE3wY

    @oss_security

    15 Feb 2025

    186 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  14. CVE-2024-52577 In Apache Ignite versions from 2.6.0 and before 2.17.0, configured Class Serialization Filters are ignored for some Ignite endpoints. The vulnerability could be explo… https://t.co/hUbmqbNN3w

    @CVEnew

    14 Feb 2025

    264 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  15. [CVE-2024-52577: CRITICAL] Apache Ignite versions 2.6.0 to 2.17.0 are vulnerable to a Deserialization Attack allowing attackers to execute code on the server side via crafted messages bypassing Class Serializatio...#cybersecurity,#vulnerability https://t.co/GcaT1ZcLEO https://t.c

    @CveFindCom

    14 Feb 2025

    12 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  16. A new vulnerability with increased severity was disclosed for Apache Ignite (CVE-2024-52577) https://t.co/5JMMWBDlDy

    @vuldb

    14 Feb 2025

    7 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

Related CVEs

  1. Relative Path Traversal vulnerability in Apache Ignite REST API. Authenticated REST API users can read any file on the server with "cmd=log" command and a log path crafted in a certain way. This issue affects Apache Ignite: from 2.0.0 through 2.17.0. Users are recommended to upgrade to version 2.18.0, which fixes the issue.CVE-2025-48977
  2. VMware Tanzu Spring Data Commons Property Binder VulnerabilityCVE-2018-1273
  3. Apache Ignite 1.0.0-RC3 to 2.0 uses an update notifier component to update the users about new project releases that include additional functionality, bug fixes and performance improvements. To do that the component communicates to an external PHP server (http://ignite.run) where it needs to send some system properties like Apache Ignite or Java version. Some of the properties might contain user sensitive information.CVE-2017-7686
  4. Apache Ignite before 1.9 allows man-in-the-middle attackers to read arbitrary files via XXE in modified update-notifier documents.CVE-2016-6805

References

Sources include official advisories and independent security research.