CRITICAL🇵🇱 Wersja polska

CVE-2024-2360

CVSS 9.8v3.1pub. 2024-06-06upd. 2024-11-21

parisneo/lollms-webui is vulnerable to path traversal attacks that can lead to remote code execution due to insufficient sanitization of user-supplied input in the 'Database path' and 'PDF LaTeX path' settings. An attacker can exploit this vulnerability by manipulating these settings to execute arbitrary code on the targeted server. The issue affects the latest version of the software. The vulnerability stems from the application's handling of the 'discussion_db_name' and 'pdf_latex_path' parameters, which do not properly validate file paths, allowing for directory traversal. This vulnerability can also lead to further file exposure and other attack vectors by manipulating the 'discussion_db_name' parameter.

🤖 AI Analysis
How it works

An attacker can manipulate the 'discussion_db_name' and 'pdf_latex_path' parameters, which are not properly validated for file paths. The lack of appropriate sanitization of user-supplied input enables path traversal (directory traversal) attacks. By properly crafting these parameters, it is possible to execute arbitrary code on the attacked server, as well as disclose system files and exploit additional attack vectors.

Impact

An attacker can remotely execute arbitrary code on the server (RCE), gain access to sensitive system files, and potentially take full control of the system, including threatening data confidentiality, integrity, and availability.

Mitigation & patch

Apply patches available from the vendor according to references. It is recommended to monitor the parisneo/lollms-webui project repository and immediately implement updates that eliminate improper validation of 'discussion_db_name' and 'pdf_latex_path' parameters. Until the fix is applied, restrict access to the web interface to trusted users only.

Who is affected

parisneo/lollms-webui — the latest version of the software available at the time of vulnerability publication (2024-06-06)

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Lollms Web Ui

    APP
    Lollms
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEPath Traversal
CWE
References

Related vulnerabilities

CVE-2026-33340CRITICAL9.1PL ✓ten sam produkt

SSRF i brak uwierzytelnienia w lollms-webui — dostęp do wewnętrznych zasobów

CVE-2024-8898CRITICAL9.8PL ✓ten sam produkt

Path traversal w API install/uninstall lollms-webui V12 (Strawberry)

CVE-2024-8581CRITICAL9.1PL ✓ten sam produkt

Path Traversal w lollms-webui umożliwia usunięcie dowolnego pliku

CVE-2024-1873CRITICAL9.1PL ✓ten sam produkt

Path Traversal i DoS w endpoint /select_database aplikacji lollms-webui

CVE-2024-2359CRITICAL9.8PL ✓ten sam produkt

Command Injection w lollms-webui — obejście zabezpieczeń i RCE