CVE-2024-3028

Exploit

EPSS 0.19%
Veröffentlicht 16.04.2024 00:15:11
Zuletzt bearbeitet 09.07.2025 19:34:59
Quelle security@huntr.dev
CVE-Watchlists
Login
Unerledigt
Login

mintplex-labs/anything-llm is vulnerable to improper input validation, allowing attackers to read and delete arbitrary files on the server. By manipulating the 'logo_filename' parameter in the 'system-preferences' API endpoint, an attacker can construct requests to read sensitive files or the application's '.env' file, and even delete files by setting the 'logo_filename' to the path of the target file and invoking the 'remove-logo' API endpoint. This vulnerability is due to the lack of proper sanitization of user-supplied input.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 5

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Mintplexlabs ≫ Anythingllm Version < 1.0.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.19%	0.416

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security@huntr.dev	7.2	1.2	5.9	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://github.com/mintplex-labs/anything-llm/commit/7de23dbb2da932fbfb39f56d981784d3702cf5ce

Patch

https://huntr.com/bounties/41016b86-eabb-4161-ac81-40a1ca8e82ac

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2024-3028

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-3028

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-3028

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-3028