Server-Side Request Forgery Vulnerability in Infiniflow/Ragflow by Infiniflow
CVE-2024-12779

7.5HIGH

Key Information:

Vendor: Infiniflow
Status: Infiniflow/ragflow
Vendor: CVE Published:; 20 March 2025

What is CVE-2024-12779?

A Server-Side Request Forgery (SSRF) vulnerability has been identified in Infiniflow's Ragflow version 0.12.0. This flaw affects the POST /v1/llm/add_llm and POST /v1/conversation/tts endpoints, enabling attackers to provide an arbitrary URL as the api_base parameter when adding an OPENAITTS model. This allows unauthorized access to the tts REST API endpoint, posing a risk of exposure to internal web resources that should remain protected from external access.

Affected Version(s)

infiniflow/ragflow <= unspecified

References

https://huntr.com/bounties/3cc748ba-2afb-4bfe-8553-10eb6d...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

CVSS V3.0

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 20, 2025
Vulnerability Reserved
Dec 18, 2024