CVE-2024-0551

Exploit

EPSS 0.56%
Veröffentlicht 27.02.2024 14:15:27
Zuletzt bearbeitet 04.03.2025 12:24:19
Quelle security@huntr.dev
CVE-Watchlists
Login
Unerledigt
Login

Download and export of file via default user role

Enable exports of the database and associated exported information of the system via the default user role. The attacked would have to have been granted access to the system prior to the attack.

It is worth noting that the deterministic nature of the export name is lower risk as the UI for exporting would start the download at the same time, which once downloaded - deletes the export from the system.

The endpoint for exporting should simply be patched to a higher privilege level.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Mintplexlabs ≫ Anythingllm Version < 1.0.0

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.56%	0.422

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.1	2.8	4.2	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
security@huntr.dev	7.1	2.8	4.2	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N

CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

https://github.com/mintplex-labs/anything-llm/commit/7aaa4b38e7112a6cd879c1238310c56b1844c6d8

Patch

https://huntr.com/bounties/f114c787-ab5f-4f83-afa5-c000435efb78

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2024-0551

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-0551

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-0551

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-0551