A vulnerability in parisneo/lollms-webui versions up to 9.3 allows remote attackers to execute arbitrary code. The vulnerability stems from insufficient protection of the `/apply_settings` and `/execute_code` endpoints. Attackers can bypass protections by setting the host to localhost, enabling code execution, and disabling code validation through the `/apply_settings` endpoint. Subsequently, arbitrary commands can be executed remotely via the `/execute_code` endpoint, exploiting the delay in settings enforcement. This issue was addressed in version 9.5.
An attacker can bypass protective mechanisms by setting the host value to localhost in a request to the `/apply_settings` endpoint, which allows code execution to be enabled while code validation is disabled simultaneously. Then, exploiting the delay in enforcing new settings, the attacker sends a request to the `/execute_code` endpoint with arbitrary commands to execute. As a result, remote execution of arbitrary system commands is possible without requiring any permissions.
An attacker can gain full control over the system running the application — including access to sensitive data, ability to modify the system and destabilize it (violation of confidentiality, integrity, and availability).
Update lollms-webui to version 9.5 or newer, in which the vulnerability has been fixed. The patch is available in the vendor's GitHub repository (commit abb4c6d495a95a3ef5b114ffc57f85cd650b905e).
parisneo/lollms-webui in versions up to and including 9.3
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HLollms Web Ui
APPLollms< 9.5
Related vulnerabilities
SSRF i brak uwierzytelnienia w lollms-webui — dostęp do wewnętrznych zasobów
Path traversal w API install/uninstall lollms-webui V12 (Strawberry)
Path Traversal w lollms-webui umożliwia usunięcie dowolnego pliku
Path Traversal i DoS w endpoint /select_database aplikacji lollms-webui
Command Injection w lollms-webui — obejście zabezpieczeń i RCE