The vulnerability of the download_file_stream() function (backend/apps/web/routers/utils.py) in the AI-based web interface Open WebUI (previously Ollama WebUI) allows a attacker to perform an SSRF attack.

The vulnerability of the downloadfilestream function located in backend/apps/web/routers/utils.py of the Open WebUI formerly Ollama WebUI AI-based web interface is related to the manipulation of requests on the server-side during the processing of the url parameter. Exploiting this vulnerability...

PT-2024-3607 · Unknown · Open-Webui

Name of the Vulnerable Software and Affected Versions: Open WebUI versions prior to 0.1.117 Description: The issue is related to an authenticated blind server-side request forgery vulnerability. It involves the download file stream function in the backend/apps/web/routers/utils.py file of the Ope...

Input validation

Improper file stream access in /desktopapp/file.ajax.php?action=uploadfile in Bitrix24 22.0.300 allows unauthenticated remote attackers to cause denial-of-service via a crafted "tmpurl"...

CVE-2023-1718 Bitrix24 Denial-of-Service (DoS) via Improper File Stream Access

Improper file stream access in /desktopapp/file.ajax.php?action=uploadfile in Bitrix24 22.0.300 allows unauthenticated remote attackers to cause denial-of-service via a crafted "tmpurl"...

CVE-2023-1718

Bitrix24 22.0.300 is affected by an improper file stream access in /desktop_app/file.ajax.php?action=uploadfile, enabling unauthenticated remote attackers to cause a denial-of-service via a crafted tmp_url. The issue appears to be a loop with an inaccessible exit condition in the desktop app file...

CVE-2023-1718 Bitrix24 Denial-of-Service (DoS) via Improper File Stream Access

Improper file stream access in /desktopapp/file.ajax.php?action=uploadfile in Bitrix24 22.0.300 allows unauthenticated remote attackers to cause denial-of-service via a crafted "tmpurl"...

Bitrix24 Security Vulnerability

Bitrix24 is a suite of enterprise social platforms from Bitrix USA. The platform includes features such as online communication, calendar management and CRM Customer Relationship Management. A security vulnerability exists in Bitrix24 version 22.0.300, which stems from incorrect access to the fil...

CVE-2023-45663

stbimage is a single file MIT licensed library for processing images. The stbigetn function reads a specified number of bytes from context typically a file into the specified buffer. In case the file stream points to the end, it returns zero. There are two places where its return value is not...

CVE-2023-45663

stbimage is a single file MIT licensed library for processing images. The stbigetn function reads a specified number of bytes from context typically a file into the specified buffer. In case the file stream points to the end, it returns zero. There are two places where its return value is not...

CVE-2023-45663 Disclosure of uninitialized memory in stbi__tga_load in stb_image

stbimage is a single file MIT licensed library for processing images. The stbigetn function reads a specified number of bytes from context typically a file into the specified buffer. In case the file stream points to the end, it returns zero. There are two places where its return value is not...

CVE-2023-45663

stbimage is a single file MIT licensed library for processing images. The stbigetn function reads a specified number of bytes from context typically a file into the specified buffer. In case the file stream points to the end, it returns zero. There are two places where its return value is not...

SUSE CVE-2023-42794

Incomplete Cleanup vulnerability in Apache Tomcat. The internal fork of Commons FileUpload packaged with Apache Tomcat 9.0.70 through 9.0.80 and 8.5.85 through 8.5.93 included an unreleased, in progress refactoring that exposed a potential denial of service on Windows if a web application opened ...

SUSE CVE-2006-6058

The minix filesystem code in Linux kernel 2.6.x before 2.6.24, including 2.6.18, allows local users to cause a denial of service hang via a malformed minix file stream that triggers an infinite loop in the minixbmap function. NOTE: this issue might be due to an integer overflow or signedness erro...

XPDF 缓冲区错误漏洞

XPDF is an open source PDF reader from FOO Labs. The product supports decoding files in LZW compressed format and reading encrypted PDF files. XPDF v4.04 version of a security vulnerability , the vulnerability stems from the attacker can be achieved through its xpdf/Stream.cc component of the...

UBUNTU-CVE-2022-40439

An memory leak issue was discovered in AP4StdcFileByteStream::Create in mp42ts in Bento4 v1.6.0-639, allows attackers to cause a denial of service via a crafted file...

CVE-2021-39562

An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function FileStream::makeSubStream located in Stream.cc. It allows an attacker to cause Denial of Service...

UBUNTU-CVE-2021-39562

An issue was discovered in swftools through 20200710. A NULL pointer dereference exists in the function FileStream::makeSubStream located in Stream.cc. It allows an attacker to cause Denial of Service...

CVE-2020-23332

A heap-based buffer overflow exists in the AP4StdcFileByteStream::ReadPartial component located in /StdC/Ap4StdCFileByteStream.cpp of Bento4 version 06c39d9. This issue can lead to a denial of service DOS...

Design/Logic Flaw

Microstrategy Web 10.4 includes functionality to allow users to import files or data from external resources such as URLs or databases. By providing an external URL under attacker control, it's possible to send requests to external resources aka SSRF or leak files from the local system using the...

The vulnerability of the FFmpeg multimedia library, related to overflow in dynamic memory buffers, allows attackers to cause a service failure or execute arbitrary code.

The vulnerability of the FFmpeg multimedia library is related to overflow of the dynamic memory buffer. Exploiting this vulnerability can allow an attacker to cause a service failure or execute arbitrary code using a specially crafted file or stream...