CVE-2024-1873

Source
https://cve.org/CVERecord?id=CVE-2024-1873
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-1873.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-1873
Published
2024-06-06T18:40:04.036Z
Modified
2026-07-08T06:33:30.881446668Z
Severity
  • 8.2 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L CVSS Calculator
Summary
Path Traversal and Denial of Service in parisneo/lollms-webui
Details

parisneo/lollms-webui is vulnerable to path traversal and denial of service attacks due to an exposed /select_database endpoint in version a9d16b0. The endpoint improperly handles file paths, allowing attackers to specify absolute paths when interacting with the DiscussionsDB instance. This flaw enables attackers to create directories anywhere on the system where the application has permissions, potentially leading to denial of service by creating directories with names of critical files, such as HTTPS certificate files, causing server startup failures. Additionally, attackers can manipulate the database path, resulting in the loss of client data by constantly changing the file location to an attacker-controlled location, scattering the data across the filesystem and making recovery difficult.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/1xxx/CVE-2024-1873.json",
    "cna_assigner": "@huntr_ai",
    "cwe_ids": [
        "CWE-22"
    ]
}
References

Affected packages

Git / github.com/parisneo/lollms-webui

Affected ranges

Type
GIT
Repo
https://github.com/parisneo/lollms-webui
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "v9.3"
        }
    ],
    "source": [
        "AFFECTED_FIELD",
        "REFERENCES"
    ]
}

Affected versions

v0.*
v0.0.1
v0.0.2
v0.0.3
v0.0.5
v0.0.6
v0.0.7
v0.0.8
v0.0.9
v3.*
v3.0
v3.5
v4.*
v4.0
v5.*
v5.0
v6.*
v6.0
v6.5
v6.5.0
v6.5rc2
v6.7
v7.*
v7.0
v8.*
v8.5
v9.*
v9.0
v9.1
v9.2

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-1873.json"