Server-Side Request Forgery (SSRF) Vulnerability in Latest Version of mintplex-labs/anything-llm Allows Bypass of Restrictions
CVE-2024-4084
What is CVE-2024-4084?
A Server-Side Request Forgery (SSRF) vulnerability has been identified in the mintplex-labs/anything-llm product, leading to significant security concerns. Despite the implementation of filters to restrict access to intranet IP addresses such as 192, 172, 10, and 127, along with limiting protocol access to HTTP and HTTPS, attackers are capable of bypassing these protections. They can employ alternative IP address representations and access additional ports on localhost, thus gaining potential access to various internal network assets. This loophole permits attackers to perform unauthorized actions such as scanning internal hosts, exploiting web services, and even identifying sensitive AWS metadata endpoints. The core issue arises from insufficient validation protocols applied to user-supplied URLs, enabling the exploitation of the system through SSRF attacks.