Path Traversal Vulnerability in mintplex-labs anything-llm
CVE-2024-3025

9.9CRITICAL

Key Information:

Vendor: Mintplex-labs
Status: Mintplex-labs/anything-llm
Vendor: CVE Published:; 10 April 2024

🔔 Create Mintplex-labs Vulnerability Alert

What is CVE-2024-3025?

The Anything-LLM product developed by Mintplex Labs is susceptible to path traversal attacks due to the inadequate validation of user input in the logo filename feature. Malicious actors can exploit this flaw by crafting specific logo filenames that reference files outside the designated directory, impacting the security and integrity of the application. This vulnerability is particularly concerning as it allows for unauthorized reading and potential deletion of sensitive files, including database files, via the vulnerable API endpoints (/api/system/upload-logo and /api/system/logo). Such issues highlight the importance of stringent input validation and proper file access controls to safeguard against data breaches.

Affected Version(s)

mintplex-labs/anything-llm < 1.0.0

References

https://huntr.com/bounties/fb09a352-1016-4481-ae88-7460e2...

https://github.com/mintplex-labs/anything-llm/commit/7de2...

CVSS V3.1

Score:

9.9

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 10, 2024
Vulnerability Reserved
Mar 27, 2024