CVE-2024-3028

Improper Input Validation in mintplex-labs/anything-llm

Description

mintplex-labs/anything-llm is vulnerable to improper input validation, allowing attackers to read and delete arbitrary files on the server. By manipulating the 'logo_filename' parameter in the 'system-preferences' API endpoint, an attacker can construct requests to read sensitive files or the application's '.env' file, and even delete files by setting the 'logo_filename' to the path of the target file and invoking the 'remove-logo' API endpoint. This vulnerability is due to the lack of proper sanitization of user-supplied input.

References

Link	Tags
https://huntr.com/bounties/41016b86-eabb-4161-ac81-40a1ca8e82ac
https://github.com/mintplex-labs/anything-llm/commit/7de23dbb2da932fbfb39f56d981784d3702cf5ce

Frequently Asked Questions

What is the severity of CVE-2024-3028?: CVE-2024-3028 has been scored as a high severity vulnerability.
How to fix CVE-2024-3028?: To fix CVE-2024-3028, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-3028 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2024-3028 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-3028?: CVE-2024-3028 affects mintplex-labs mintplex-labs/anything-llm.

This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.

Description

Category

CWE-20 – Improper Input Validation

References

Frequently Asked Questions