Plattform
nodejs
Komponente
mintplex-labs/anything-llm
Behoben in
1.0.1
CVE-2024-0440 is a critical Server-Side Request Forgery (SSRF) vulnerability affecting versions of the anything-llm Node.js library up to and including 1.0.0. This vulnerability allows an attacker, possessing the ability to submit links (potentially via a POST request), to leverage the file:// protocol to introspect host files and other relatively stored files. A fix is available in version 1.0.0.
The SSRF vulnerability in anything-llm allows an attacker to bypass security controls and make requests to internal resources that are otherwise inaccessible. By crafting a malicious POST request containing a file:// URL, an attacker can potentially read arbitrary files on the server's file system. This includes configuration files, sensitive data, and potentially even source code. The impact is particularly severe if the application is running with elevated privileges, as the attacker could then access files owned by the application's user. This could lead to complete compromise of the server and its data.
This vulnerability was publicly disclosed on 2024-02-25. There are currently no known public exploits or active campaigns targeting this vulnerability, but the SSRF nature of the flaw makes it a potential target. The CVSS score of 9.6 indicates a critical severity. It is recommended to prioritize patching this vulnerability.
Applications utilizing the anything-llm Node.js library in versions prior to 1.0.0 are at risk. This includes applications that process user-supplied URLs without proper validation, particularly those deployed in environments where file system access is not strictly controlled. Shared hosting environments where the application has access to the host's file system are particularly vulnerable.
• nodejs / server:
npm list anything-llm | grep -q '1.0.0' || echo "Vulnerable version detected!" • generic web:
curl -I 'http://your-server/your-endpoint?url=file:///etc/passwd' | grep 'HTTP/1.1 403' # Check for access denieddisclosure
Exploit-Status
EPSS
0.19% (41% Perzentil)
CVSS-Vektor
The primary mitigation for CVE-2024-0440 is to upgrade to version 1.0.0 or later of the anything-llm library. If upgrading is not immediately feasible, consider implementing input validation on the link submission endpoint to prevent the use of the file:// protocol. Additionally, restrict the permissions of the application user to minimize the potential impact of a successful attack. Web application firewalls (WAFs) can be configured to block requests containing the file:// protocol. Monitor application logs for suspicious requests containing file paths.
Actualice la aplicación Anything LLM a la versión 1.0.0 o posterior. Esta versión contiene una corrección para la vulnerabilidad SSRF que impide el acceso no autorizado a archivos del sistema. La actualización se puede realizar a través del gestor de paquetes npm o siguiendo las instrucciones de actualización proporcionadas por el proveedor.
Schwachstellenanalysen und kritische Warnungen direkt in deinen Posteingang.
CVE-2024-0440 is a critical SSRF vulnerability in the anything-llm Node.js library, allowing attackers to access host files via the file:// protocol in POST requests.
You are affected if you are using anything-llm versions less than or equal to 1.0.0 and are not validating user-supplied URLs.
Upgrade to version 1.0.0 of anything-llm. If immediate upgrade isn't possible, implement strict input validation to filter out file:// URLs.
While no public exploits are currently known, the CRITICAL severity and ease of exploitation suggest active exploitation is possible.
Refer to the project's repository or website for the official advisory, typically found in the release notes or security announcements.
Lade deine Abhängigkeitsdatei hoch und erfahre sofort, ob dich diese und andere CVEs treffen.