Lucene search

GoogleOSV:CVE-2024-2288

HistoryJun 06, 2024 - 7:15 p.m.

CVE-2024-2288

2024-06-0619:15:54

Google

osv.dev

cve-2024-2288

cross-site request forgery

lollms

profile picture

denial of service

filesystem

stored cross-site scripting

javascript

version 7.3.0

version 9.3

CVSS3

8.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:H

AI Score

6.4

Confidence

High

EPSS

Percentile

9.0%

JSON

A Cross-Site Request Forgery (CSRF) vulnerability exists in the profile picture upload functionality of the Lollms application, specifically in the parisneo/lollms-webui repository, affecting versions up to 7.3.0. This vulnerability allows attackers to change a victim’s profile picture without their consent, potentially leading to a denial of service by overloading the filesystem with files. Additionally, this flaw can be exploited to perform a stored cross-site scripting (XSS) attack, enabling attackers to execute arbitrary JavaScript in the context of the victim’s browser session. The issue is resolved in version 9.3.

References

github.com/parisneo/lollms-webui/commit/ed085e6effab2b1e25ba2b00366a16ff67d8551b

huntr.com/bounties/2a37ae0c-890a-401a-8f3c-a261f3006290

CVSS3

8.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:H

AI Score

6.4

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for OSV:CVE-2024-2288