CVE-2024-3149

CVSS V2 None CVSS V3 None

Description

A Server-Side Request Forgery (SSRF) vulnerability exists in the upload link feature of mintplex-labs/anything-llm. This feature, intended for users with manager or admin roles, processes uploaded links through an internal Collector API using a headless browser. An attacker can exploit this by hosting a malicious website and using it to perform actions such as internal port scanning, accessing internal web applications not exposed externally, and interacting with the Collector API. This interaction can lead to unauthorized actions such as arbitrary file deletion and limited Local File Inclusion (LFI), including accessing NGINX access logs which may contain sensitive information.

Overview

CVE ID
CVE-2024-3149

Assigner
@huntr_ai

Vulnerability Status
PUBLISHED

Published Version
2024-06-06T18:43:50.967Z

Last Modified Date
2024-06-06T18:43:50.967Z

Weakness Enumerations

CWE	URL
CWE-918	http://cwe.mitre.org/data/definitions/918.html

References

Reference URL	Reference Tags
https://huntr.com/bounties/b230d76b-ae2d-440e-a25b-94ffaa7c4ff1
https://github.com/mintplex-labs/anything-llm/commit/f4088d9348fa86dcebe9f97a18d39c0a6e92f15e

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2024-3149
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3149

History

Created	Old Value	New Value	Data Type	Notes
2024-06-23 23:50:38				Added to TrackCVE