CVE-2024-10833

Exploit

EPSS 0.22%
Veröffentlicht 20.03.2025 10:10:15
Zuletzt bearbeitet 15.10.2025 13:15:37
Quelle security@huntr.dev
CVE-Watchlists
Login
Unerledigt
Login

eosphoros-ai/db-gpt version 0.6.0 is vulnerable to an arbitrary file write through the knowledge API. The endpoint for uploading files as 'knowledge' is susceptible to absolute path traversal, allowing attackers to write files to arbitrary locations on the target server. This vulnerability arises because the 'doc_file.filename' parameter is user-controllable, enabling the construction of absolute paths.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Dbgpt ≫ Db-gpt Version0.6.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.22%	0.449

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security@huntr.dev	9.1	3.9	5.2	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

CWE-36 Absolute Path Traversal

The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize absolute path sequences such as "/abs/path" that can resolve to a location that is outside of that directory.

https://huntr.com/bounties/dc58e981-e325-4c11-b4e1-1095890fd15a

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2024-10833

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-10833

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-10833

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-10833