CVE-2024-2029
published 2024-04-10CVE-2024-2029: A command injection vulnerability exists in the `TranscriptEndpoint` of mudler/localai, specifically within the `audioToWav` function used for converting audio…
PriorityP268critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
2.88%
85.1th percentile
A command injection vulnerability exists in the `TranscriptEndpoint` of mudler/localai, specifically within the `audioToWav` function used for converting audio files to WAV format for transcription. The vulnerability arises due to the lack of sanitization of user-supplied filenames before passing them to ffmpeg via a shell command, allowing an attacker to execute arbitrary commands on the host system. Successful exploitation could lead to unauthorized access, data breaches, or other detrimental impacts, depending on the privileges of the process executing the code.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | go-skynet_localai | >= 0 < 2.10.0 | 2.10.0 |
| mudler | localai | < 2.10.0 | 2.10.0 |
| mudler | mudler_localai | >= unspecified < v2.10.0 | v2.10.0 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
LocalAI Command Injection in audioToWav in github.com/go-skynet/LocalAI
osv·2024-06-05
CVE-2024-2029 LocalAI Command Injection in audioToWav in github.com/go-skynet/LocalAI
LocalAI Command Injection in audioToWav in github.com/go-skynet/LocalAI
LocalAI Command Injection in audioToWav in github.com/go-skynet/LocalAI.
NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions.
(If this is causing false-positive reports from vulnerability scanners, please suggest an edit to the report.)
The additional affected modules and versions are: github.com/go-skynet/LocalAI before v2.10.0.
OSV
LocalAI Command Injection in audioToWav
osv·2024-04-10
CVE-2024-2029 [CRITICAL] LocalAI Command Injection in audioToWav
LocalAI Command Injection in audioToWav
A command injection vulnerability exists in the `TranscriptEndpoint` of mudler/localai, specifically within the `audioToWav` function used for converting audio files to WAV format for transcription. The vulnerability arises due to the lack of sanitization of user-supplied filenames before passing them to ffmpeg via a shell command, allowing an attacker to execute arbitrary commands on the host system. Successful exploitation could lead to unauthorized access, data breaches, or other detrimental impacts, depending on the privileges of the process executing the code.
GHSA
LocalAI Command Injection in audioToWav
ghsa·2024-04-10
CVE-2024-2029 [CRITICAL] CWE-78 LocalAI Command Injection in audioToWav
LocalAI Command Injection in audioToWav
A command injection vulnerability exists in the `TranscriptEndpoint` of mudler/localai, specifically within the `audioToWav` function used for converting audio files to WAV format for transcription. The vulnerability arises due to the lack of sanitization of user-supplied filenames before passing them to ffmpeg via a shell command, allowing an attacker to execute arbitrary commands on the host system. Successful exploitation could lead to unauthorized access, data breaches, or other detrimental impacts, depending on the privileges of the process executing the code.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-04-10
Published