CVE-2024-5213

CVSS V2 None CVSS V3 None

Description

In mintplex-labs/anything-llm versions up to and including 1.5.3, an issue was discovered where the password hash of a user is returned in the response after login (`POST /api/request-token`) and after account creations (`POST /api/admin/users/new`). This exposure occurs because the entire User object, including the bcrypt password hash, is included in the response sent to the frontend. This practice could potentially lead to sensitive information exposure despite the use of bcrypt, a strong hashing algorithm. It is recommended not to expose any clues about passwords to the frontend.

Overview

CVE ID
CVE-2024-5213

Assigner
@huntr_ai

Vulnerability Status
PUBLISHED

Published Version
2024-06-20T02:15:33.551Z

Last Modified Date
2024-06-20T16:23:43.095Z

Weakness Enumerations

CWE	URL
CWE-1230	http://cwe.mitre.org/data/definitions/1230.html

References

Reference URL	Reference Tags
https://huntr.com/bounties/8794fb65-50aa-40e3-b348-a29838dbf63d
https://github.com/mintplex-labs/anything-llm/commit/9df4521113ddb9a3adb5d0e3941e7d494992629c

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2024-5213
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5213

History

Created	Old Value	New Value	Data Type	Notes
2024-06-26 03:14:38				Added to TrackCVE