CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
10.5%
A path traversal vulnerability exists in the ‘cyber_security/codeguard’ native personality of the parisneo/lollms-webui, affecting versions up to 9.5. The vulnerability arises from the improper limitation of a pathname to a restricted directory in the ‘process_folder’ function within ‘lollms-webui/zoos/personalities_zoo/cyber_security/codeguard/scripts/processor.py’. Specifically, the function fails to properly sanitize user-supplied input for the ‘code_folder_path’, allowing an attacker to specify arbitrary paths using ‘…/’ or absolute paths. This flaw leads to arbitrary file read and overwrite capabilities in specified directories without limitations, posing a significant risk of sensitive information disclosure and unauthorized file manipulation.
Vendor | Product | Version | CPE |
---|---|---|---|
parisneo | lollms_web_ui | 9.5 | cpe:2.3:a:parisneo:lollms_web_ui:9.5:*:*:*:*:*:*:* |
[
{
"vendor": "parisneo",
"product": "parisneo/lollms-webui",
"versions": [
{
"version": "unspecified",
"lessThan": "9.5",
"status": "affected",
"versionType": "custom"
}
]
}
]