CVE-2024-0455

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-0455

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-0455.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-0455

Downstream

MINI-v2j4-v2w7-pmwj

Published

2024-02-26T16:27:50.937Z

Modified

2026-03-14T12:29:44.324699Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

The inclusion of the web scraper for AnythingLLM means that any user with the proper authorization level (manager, admin, and when in single user) could put in the URL

http://169.254.169.254/latest/meta-data/identity-credentials/ec2/security-credentials/ec2-instance

which is a special IP and URL that resolves only when the request comes from within an EC2 instance. This would allow the user to see the connection/secret credentials for their specific instance and be able to manage it regardless of who deployed it.

The user would have to have pre-existing knowledge of the hosting infra which the target instance is deployed on, but if sent - would resolve if on EC2 and the proper iptable or firewall rule is not configured for their setup.

References

Affected packages

Git / github.com/mintplex-labs/anything-llm

Affected ranges

Type: GIT
Repo: https://github.com/mintplex-labs/anything-llm
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

b2b2c2afe15c48952d57b4d01e7108f9515c5f55

Type: GIT
Repo: https://github.com/mintplex-labs/anything-llm
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

b2b2c2afe15c48952d57b4d01e7108f9515c5f55

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-0455.json"