CVE-2024-4322

Exploit

EPSS 12.78%
Veröffentlicht 16.05.2024 09:15:16
Zuletzt bearbeitet 09.07.2025 14:32:00
Quelle security@huntr.dev
CVE-Watchlists
Login
Unerledigt
Login

A path traversal vulnerability exists in the parisneo/lollms-webui application, specifically within the `/list_personalities` endpoint. By manipulating the `category` parameter, an attacker can traverse the directory structure and list any directory on the system. This issue affects the latest version of the application. The vulnerability is due to improper handling of user-supplied input in the `list_personalities` function, where the `category` parameter can be controlled to specify arbitrary directories for listing. Successful exploitation of this vulnerability could allow an attacker to list all folders in the drive on the system, potentially leading to information disclosure.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Lollms ≫ Lollms Web Ui Version < 9.8

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	12.78%	0.938

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security@huntr.dev	7.5	3.9	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-29 Path Traversal: '\..\filename'

The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize '\..\filename' (leading backslash dot dot) sequences that can resolve to a location that is outside of that directory.

https://huntr.com/bounties/5116d858-ce00-418c-a5a5-851c5608c209

Patch

Third Party Advisory

Exploit

Issue Tracking

https://nvd.nist.gov/vuln/detail/CVE-2024-4322

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-4322

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-4322

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-4322