CVE-2024-3102

Опубликовано: 06 июн. 2024

Источник: nvd

CVSS3: 5.3

EPSS Низкий

Описание

A JSON Injection vulnerability exists in the mintplex-labs/anything-llm application, specifically within the username parameter during the login process at the /api/request-token endpoint. The vulnerability arises from improper handling of values, allowing attackers to perform brute force attacks without prior knowledge of the username. Once the password is known, attackers can conduct blind attacks to ascertain the full username, significantly compromising system security.

Ссылки

https://github.com/mintplex-labs/anything-llm/commit/2374939ffb551ab2929d7f9d5827fe6597fa8caa
Patch
https://huntr.com/bounties/8af4650d-5955-44a4-86b4-d08e1c862b49
Exploit
Third Party Advisory
https://github.com/mintplex-labs/anything-llm/commit/2374939ffb551ab2929d7f9d5827fe6597fa8caa
Patch
https://huntr.com/bounties/8af4650d-5955-44a4-86b4-d08e1c862b49
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mintplexlabs:anythingllm:*:*:*:*:*:*:*:*

Версия до 1.0.0 (исключая)

EPSS

Процентиль: 38%

0.0017

Низкий

5.3 Medium

CVSS3

5.3 Medium

CVSS3

Дефекты

CWE-307

Связанные уязвимости

GHSA-f97w-xx7w-xwgf

CVSS3: 5.3

github

больше 1 года назад

A JSON Injection vulnerability exists in the `mintplex-labs/anything-llm` application, specifically within the username parameter during the login process at the `/api/request-token` endpoint. The vulnerability arises from improper handling of values, allowing attackers to perform brute force attacks without prior knowledge of the username. Once the password is known, attackers can conduct blind attacks to ascertain the full username, significantly compromising system security.

EPSS

Процентиль: 38%

0.0017

Низкий

5.3 Medium

CVSS3

5.3 Medium

CVSS3

Дефекты

CWE-307