CVE-2024-4897 Remote Code Execution in parisneo/lollms-webui

2024-07-0214:37:36

CWE-76

@huntr_ai

github.com

cve-2024-4897

parisneo/lollms-webui

remote code execution

llama-cpp-python

insecure dependency

binding_zoo feature

model files vulnerability

hugging-face

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.8 High

AI Score

Confidence

Low

JSON

parisneo/lollms-webui, in its latest version, is vulnerable to remote code execution due to an insecure dependency on llama-cpp-python version llama_cpp_python-0.2.61+cpuavx2-cp311-cp311-manylinux_2_31_x86_64. The vulnerability arises from the application’s ‘binding_zoo’ feature, which allows attackers to upload and interact with a malicious model file hosted on hugging-face, leading to remote code execution. The issue is linked to a known vulnerability in llama-cpp-python, CVE-2024-34359, which has not been patched in lollms-webui as of commit b454f40a. The vulnerability is exploitable through the application’s handling of model files in the ‘bindings_zoo’ feature, specifically when processing gguf format model files.

CNA Affected

[
  {
    "vendor": "parisneo",
    "product": "parisneo/lollms-webui",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom",
        "lessThanOrEqual": "latest"
      }
    ]
  }
]