Lucene search

@huntr_aiCVE-2024-6331

HistoryAug 04, 2024 - 12:15 a.m.

CVE-2024-6331

2024-08-0400:15:47

CWE-74

@huntr_ai

web.nvd.nist.gov

cve-2024-6331

local file read

prompt injection

google gimini 1.0 pro

harmblockthreshold

harmcategory

safety_settings

content protection

sensitive file contents

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

18.8%

JSON

stitionai/devika main branch as of commit cdfb782b0e634b773b10963c8034dc9207ba1f9f is vulnerable to Local File Read (LFI) by Prompt Injection. The integration of Google Gimini 1.0 Pro with HarmBlockThreshold.BLOCK_NONE for HarmCategory.HARM_CATEGORY_HATE_SPEECH and HarmCategory.HARM_CATEGORY_HARASSMENT in safety_settings disables content protection. This allows malicious commands to be executed, such as reading sensitive file contents like /etc/passwd.

Affected configurations

Nvd

Node

stitionaidevikaRange2024-05-02≥

VendorProductVersionCPE
stitionaidevika*cpe:2.3:a:stitionai:devika:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
stitionai	devika	*	cpe:2.3:a:stitionai:devika::::::::

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "stitionai/devika",
    "vendor": "stitionai",
    "versions": [
      {
        "lessThanOrEqual": "latest",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

huntr.com/bounties/d5ac1051-22fa-42f0-8d82-73267482e60f

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

18.8%

JSON

Related for CVE-2024-6331