Lucene search

@huntr_aiVULNRICHMENT:CVE-2024-0763

HistoryFeb 27, 2024 - 9:14 p.m.

CVE-2024-0763 Improper validation of document removal parameter

2024-02-2721:14:56

CWE-20

@huntr_ai

github.com

cve-2024-0763

validation flaw

path traversal

remote server

access control

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

AI Score

8.1

Confidence

High

SSVC

Exploitation

poc

Automatable

Technical Impact

partial

JSON

Any user can delete an arbitrary folder (recursively) on a remote server due to bad input sanitization leading to path traversal. The attacker would need access to the server at some privilege level since this endpoint is protected and requires authorization.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:mintplexlabs:anythingllm:-:*:*:*:*:*:*:*"
    ],
    "vendor": "mintplexlabs",
    "product": "anythingllm",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "1.0.0",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]

References

github.com/mintplex-labs/anything-llm/commit/8a7324d0e77a15186e1ad5e5119fca4fb224c39c

huntr.com/bounties/25a2f487-5a9c-4c7f-a2d3-b0527db73ea5

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

AI Score

8.1

Confidence

High

SSVC

Exploitation

poc

Automatable

Technical Impact

partial

JSON

Related for VULNRICHMENT:CVE-2024-0763