Infiniflow Ragflow Remote Code Execution Vulnerability
CVE-2024-10131
8.8HIGH
Key Information:
- Vendor
- Infiniflow
- Status
- Infiniflow/ragflow
- Vendor
- CVE Published:
- 19 October 2024
Summary
The add_llm function in the llm_app.py file of Infiniflow's Ragflow version 0.11.0 is susceptible to a vulnerability that facilitates remote code execution. This vulnerability arises from the manipulation of user-supplied input within the function, specifically the parameters req['llm_factory'] and req['llm_name']. Due to inadequate input validation and sanitization, attackers can craft malicious inputs that leverage dynamic class instantiation based on model dictionaries. Such exploitation could lead to the execution of arbitrary code on the server, posing significant risks to the application's integrity.
Affected Version(s)
infiniflow/ragflow <= unspecified
References
CVSS V3.1
Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved