8.2

CVE-2024-1646

Exploit

EPSS 0.07%
Veröffentlicht 16.04.2024 00:15:09
Zuletzt bearbeitet 15.08.2025 20:33:28
Quelle security@huntr.dev
CVE-Watchlists
Login
Unerledigt
Login

parisneo/lollms-webui is vulnerable to authentication bypass due to insufficient protection over sensitive endpoints. The application checks if the host parameter is not '0.0.0.0' to restrict access, which is inadequate when the application is bound to a specific interface, allowing unauthorized access to endpoints such as '/restart_program', '/update_software', '/check_update', '/start_recording', and '/stop_recording'. This vulnerability can lead to denial of service, unauthorized disabling or overriding of recordings, and potentially other impacts if certain features are enabled in the configuration.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Lollms ≫ Lollms-webui Version < 9.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.07%	0.209

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security@huntr.dev	8.2	3.9	4.2	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

CWE-288 Authentication Bypass Using an Alternate Path or Channel

The product requires authentication, but the product has an alternate path or channel that does not require authentication.

https://github.com/parisneo/lollms-webui/commit/02e829b5653a1aa5dbbe9413ec84f96caa1274e8

Patch

https://huntr.com/bounties/2f769c46-aa85-4ab8-8b08-fe791313b7ba

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2024-1646

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-1646

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-1646

EUVD