Vulnerability in lollms-webui Allows Path Traversal and Code Execution
CVE-2024-6971

4.4MEDIUM

Key Information:

Vendor: Parisneo
Status: Parisneo/lollms
Vendor: CVE Published:; 11 October 2024

What is CVE-2024-6971?

A path traversal vulnerability exists in the parisneo/lollms-webui repository, specifically in the lollms_file_system.py file. The functions add_rag_database, toggle_mount_rag_database, and vectorize_folder do not implement security measures such as sanitize_path_from_endpoint or sanitize_path. This allows an attacker to perform vectorize operations on .sqlite files in any directory on the victim's computer, potentially installing multiple packages and causing a crash.

Affected Version(s)

parisneo/lollms <= unspecified

References

https://huntr.com/bounties/fbfe7cd0-99fb-4305-bd07-8b5733...

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 11, 2024
Vulnerability Reserved
Jul 21, 2024

JSON

Parisneo

What is CVE-2024-6971?

Affected Version(s)

References

CVSS V3.1

Timeline