CVE-2024-6139
published 2024-06-27CVE-2024-6139: A path traversal vulnerability exists in the XTTS server of the parisneo/lollms package version v9.6. This vulnerability allows an attacker to write audio…
PriorityP345high7.3CVSS 3.0
AVNACLPRNUINSUCLILAL
EPSS
0.52%
40.2th percentile
A path traversal vulnerability exists in the XTTS server of the parisneo/lollms package version v9.6. This vulnerability allows an attacker to write audio files to arbitrary locations on the system and enumerate file paths. The issue arises from improper validation of user-provided file paths in the `tts_to_file` endpoint.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| lollms | lollms | 0 – 9.5.1 | — |
| parisneo | parisneo_lollms | unspecified – latest | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
lollms vulnerable to dot-dot-slash path traversal in XTTS server
ghsa·2024-06-27
CVE-2024-6139 [HIGH] CWE-29 lollms vulnerable to dot-dot-slash path traversal in XTTS server
lollms vulnerable to dot-dot-slash path traversal in XTTS server
A path traversal vulnerability exists in the XTTS server of the parisneo/lollms package version v9.6. This vulnerability allows an attacker to write audio files to arbitrary locations on the system and enumerate file paths. The issue arises from improper validation of user-provided file paths in the `tts_to_file` endpoint.
OSV
lollms vulnerable to dot-dot-slash path traversal in XTTS server
osv·2024-06-27
CVE-2024-6139 [HIGH] lollms vulnerable to dot-dot-slash path traversal in XTTS server
lollms vulnerable to dot-dot-slash path traversal in XTTS server
A path traversal vulnerability exists in the XTTS server of the parisneo/lollms package version v9.6. This vulnerability allows an attacker to write audio files to arbitrary locations on the system and enumerate file paths. The issue arises from improper validation of user-provided file paths in the `tts_to_file` endpoint.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-06-27
Published