CVE-2024-3025

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-3025
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-3025.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-3025
Published
2024-04-10T17:15:55.993Z
Modified
2026-03-14T12:28:18.576057Z
Severity
  • 9.9 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

mintplex-labs/anything-llm is vulnerable to path traversal attacks due to insufficient validation of user-supplied input in the logo filename functionality. Attackers can exploit this vulnerability by manipulating the logo filename to reference files outside of the restricted directory. This can lead to unauthorized reading or deletion of files by utilizing the /api/system/upload-logo and /api/system/logo endpoints. The issue stems from the lack of filtering or validation on the logo filename, allowing attackers to target sensitive files such as the application's database.

References

Affected packages

Git / github.com/mintplex-labs/anything-llm

Affected ranges

Type
GIT
Repo
https://github.com/mintplex-labs/anything-llm
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
013c0b9575ae6a87af87275e326041c4e0afeeee
Fixed
7de23dbb2da932fbfb39f56d981784d3702cf5ce
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "1.0.0"
        }
    ]
}

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-3025.json"