Lucene search

GoogleOSV:GHSA-CPCX-R2GQ-X893

HistoryJun 20, 2024 - 12:30 a.m.

LocalAI path traversal vulnerability

2024-06-2000:30:46

Google

osv.dev

localai

path traversal

version 2.14.0

model parameter

directory structure

sensitive data

input validation

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

AI Score

Confidence

High

EPSS

0.001

Percentile

18.7%

JSON

A path traversal vulnerability exists in mudler/localai version 2.14.0, where an attacker can exploit the model parameter during the model deletion process to delete arbitrary files. Specifically, by crafting a request with a manipulated model parameter, an attacker can traverse the directory structure and target files outside of the intended directory, leading to the deletion of sensitive data. This vulnerability is due to insufficient input validation and sanitization of the model parameter.

References

github.com/mudler/LocalAI

github.com/mudler/localai/commit/1a3dedece06cab1acc3332055d285ac540a47f0e

huntr.com/bounties/f7a87f29-c22a-48e8-9fce-b6d5a273e545

nvd.nist.gov/vuln/detail/CVE-2024-5182

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

AI Score

Confidence

High

EPSS

0.001

Percentile

18.7%

JSON

Related for OSV:GHSA-CPCX-R2GQ-X893