Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/03/22 11:9 a.m.8 views

CVE-2024-8196

In mintplex-labs/anything-llm v1.5.11 desktop version for Windows, the application opens server port 3001 on 0.0.0.0 with no authentication by default. This vulnerability allows an attacker to gain full backend access, enabling them to perform actions such as deleting all data from the workspace...

9.8CVSS7.3AI score0.0078EPSS
Exploits1References1
NVD
NVD
added 2025/03/20 10:15 a.m.11 views

CVE-2024-8196

In mintplex-labs/anything-llm v1.5.11 desktop version for Windows, the application opens server port 3001 on 0.0.0.0 with no authentication by default. This vulnerability allows an attacker to gain full backend access, enabling them to perform actions such as deleting all data from the workspace...

9.8CVSS0.0078EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/03/20 10:11 a.m.14 views

CVE-2024-8196 Missing Authentication for Critical Function in mintplex-labs/anything-llm

In mintplex-labs/anything-llm v1.5.11 desktop version for Windows, the application opens server port 3001 on 0.0.0.0 with no authentication by default. This vulnerability allows an attacker to gain full backend access, enabling them to perform actions such as deleting all data from the workspace...

9.8CVSS0.0078EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/03/20 10:11 a.m.7 views

CVE-2024-8196 Missing Authentication for Critical Function in mintplex-labs/anything-llm

In mintplex-labs/anything-llm v1.5.11 desktop version for Windows, the application opens server port 3001 on 0.0.0.0 with no authentication by default. This vulnerability allows an attacker to gain full backend access, enabling them to perform actions such as deleting all data from the workspace...

9.8CVSS9.7AI score0.0078EPSS
Exploits1References2
CVE
CVE
added 2025/03/20 10:11 a.m.53 views

CVE-2024-8196

CVE-2024-8196 affects mintplex-labs/anything-llm v1.5.11 desktop for Windows. The app opens server port 3001 on 0.0.0.0 with no authentication by default, enabling an attacker to gain full backend access and potentially delete all data from the workspace. Connected sources reiterate the same beha...

9.8CVSS9.7AI score0.0078EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2025/03/20 10:11 a.m.7 views

CVE-2024-8196 Missing Authentication for Critical Function in mintplex-labs/anything-llm

In mintplex-labs/anything-llm v1.5.11 desktop version for Windows, the application opens server port 3001 on 0.0.0.0 with no authentication by default. This vulnerability allows an attacker to gain full backend access, enabling them to perform actions such as deleting all data from the workspace...

9.8CVSS7.2AI score0.0078EPSS
Exploits1References4
Rows per page
Query Builder