cbcvebase.

Mintplex-Labs Anything-Llm vulnerabilities

57 known vulnerabilities affecting mintplex-labs/mintplex-labs_anything-llm.

Total CVEs
57
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL9HIGH31MEDIUM17

Vulnerabilities

Page 3 of 3
CVE-2024-0550P3MEDIUMCVSS 6.5≥ unspecified, < 1.0.02024-02-28
CVE-2024-0550 [MEDIUM] CWE-23 CVE-2024-0550: A user who is privileged already `manager` or `admin` can set their profile picture via the frontend A user who is privileged already `manager` or `admin` can set their profile picture via the frontend API using a relative filepath to then user the PFP GET API to download any valid files. The attacker would have to have been granted privileged permissions to the system before executing this attack.
nvd
CVE-2024-0440P3MEDIUMCVSS 6.5≥ unspecified, < 1.0.02024-02-26
CVE-2024-0440 [MEDIUM] CWE-918 CVE-2024-0440: Attacker, with permission to submit a link or submits a link via POST to be collected that is using Attacker, with permission to submit a link or submits a link via POST to be collected that is using the file:// protocol can then introspect host files and other relatively stored files.
nvd
CVE-2024-0551P3HIGHCVSS 7.1≥ unspecified, < 1.0.02024-02-27
CVE-2024-0551 [HIGH] CWE-284 CVE-2024-0551: Enable exports of the database and associated exported information of the system via the default use Enable exports of the database and associated exported information of the system via the default user role. The attacked would have to have been granted access to the system prior to the attack. It is worth noting that the deterministic nature of the export name is lower risk as the UI for exporting would start the download at the same time, which once
nvd
CVE-2024-5213P3MEDIUMCVSS 6.5≥ unspecified, < 1.0.02024-06-20
CVE-2024-5213 [MEDIUM] CWE-201 CVE-2024-5213: In mintplex-labs/anything-llm versions up to and including 1.5.3, an issue was discovered where the In mintplex-labs/anything-llm versions up to and including 1.5.3, an issue was discovered where the password hash of a user is returned in the response after login (`POST /api/request-token`) and after account creations (`POST /api/admin/users/new`). This exposure occurs because the entire User object, including the bcrypt password hash, is included in
nvd
CVE-2024-2913P3MEDIUMCVSS 6.5≥ unspecified, ≤ latest2024-05-07
CVE-2024-2913 [MEDIUM] CWE-367 CVE-2024-2913: A race condition vulnerability exists in the mintplex-labs/anything-llm repository, specifically wit A race condition vulnerability exists in the mintplex-labs/anything-llm repository, specifically within the user invite acceptance process. Attackers can exploit this vulnerability by sending multiple concurrent requests to accept a single user invite, allowing the creation of multiple user accounts from a single invite link intended for only one user
nvd
CVE-2024-0765P3MEDIUMCVSS 6.5≥ unspecified, < 1.0.02024-03-03
CVE-2024-0765 [MEDIUM] CWE-200 CVE-2024-0765: As a default user on a multi-user instance of AnythingLLM, you could execute a call to the `/export- As a default user on a multi-user instance of AnythingLLM, you could execute a call to the `/export-data` endpoint of the system and then unzip and read that export that would enable you do exfiltrate data of the system at that save state. This would require the attacked to be granted explicit access to the system, but they can do this at any role. A
nvd
CVE-2024-3153P3MEDIUMCVSS 6.5≥ unspecified, < 1.0.02024-06-06
CVE-2024-3153 [MEDIUM] CWE-400 CVE-2024-3153: mintplex-labs/anything-llm is affected by an uncontrolled resource consumption vulnerability in its mintplex-labs/anything-llm is affected by an uncontrolled resource consumption vulnerability in its upload file endpoint, leading to a denial of service (DOS) condition. Specifically, the server can be shut down by sending an invalid upload request. An attacker with the ability to upload documents can exploit this vulnerability to cause a DOS condition
nvd
CVE-2024-5208P3MEDIUMCVSS 6.5≥ unspecified, < 1.0.02024-06-19
CVE-2024-5208 [MEDIUM] CWE-770 CVE-2024-5208: An uncontrolled resource consumption vulnerability exists in the `upload-link` endpoint of mintplex- An uncontrolled resource consumption vulnerability exists in the `upload-link` endpoint of mintplex-labs/anything-llm. This vulnerability allows attackers to cause a denial of service (DOS) by shutting down the server through sending invalid upload requests. Specifically, the server can be made to shut down by sending an empty body with a 'Content-Len
nvd
CVE-2024-7771P4MEDIUMCVSS 6.5≥ unspecified, < 1.3.12025-03-20
CVE-2024-7771 [MEDIUM] CWE-400 CVE-2024-7771: A vulnerability in the Dockerized version of mintplex-labs/anything-llm (latest, digest 1d9452da2b92 A vulnerability in the Dockerized version of mintplex-labs/anything-llm (latest, digest 1d9452da2b92) allows for a denial of service. Uploading an audio file with a very low sample rate causes the functionality responsible for transcribing it to crash the entire site instance. The issue arises from the localWhisper implementation, where resampling the
nvd
CVE-2024-0436P4MEDIUMCVSS 5.9≥ unspecified, < 1.0.02024-02-26
CVE-2024-0436 [MEDIUM] CWE-203 CVE-2024-0436: Theoretically, it would be possible for an attacker to brute-force the password for an instance in s Theoretically, it would be possible for an attacker to brute-force the password for an instance in single-user password protection mode via a timing attack given the linear nature of the `!==` used for comparison. The risk is minified by the additional overhead of the request, which varies in a non-constant nature making the attack less reliable to e
nvd
CVE-2024-8251P4MEDIUMCVSS 5.3≥ unspecified, < 1.2.22025-03-20
CVE-2024-8251 [MEDIUM] CWE-89 CVE-2024-8251: A vulnerability in mintplex-labs/anything-llm prior to version 1.2.2 allows for Prisma injection. Th A vulnerability in mintplex-labs/anything-llm prior to version 1.2.2 allows for Prisma injection. The issue exists in the API endpoint "/embed/:embedId/stream-chat" where user-provided JSON is directly taken to the Prisma library's where clause. An attacker can exploit this by providing a specially crafted JSON object, such as {"sessionId":{"not":"a"}}
nvd
CVE-2024-3102P4MEDIUMCVSS 5.3≥ unspecified, < 1.0.02024-06-06
CVE-2024-3102 [MEDIUM] CWE-307 CVE-2024-3102: A JSON Injection vulnerability exists in the `mintplex-labs/anything-llm` application, specifically A JSON Injection vulnerability exists in the `mintplex-labs/anything-llm` application, specifically within the username parameter during the login process at the `/api/request-token` endpoint. The vulnerability arises from improper handling of values, allowing attackers to perform brute force attacks without prior knowledge of the username. Once the pa
nvd
CVE-2024-3570P4MEDIUMCVSS 5.4≥ unspecified, < a4ace56a401ffc8ce0082d7444159dfd5dc288342024-04-10
CVE-2024-3570 [MEDIUM] CWE-79 CVE-2024-3570: A stored Cross-Site Scripting (XSS) vulnerability exists in the chat functionality of the mintplex-l A stored Cross-Site Scripting (XSS) vulnerability exists in the chat functionality of the mintplex-labs/anything-llm repository, allowing attackers to execute arbitrary JavaScript in the context of a user's session. By manipulating the ChatBot responses, an attacker can inject malicious scripts to perform actions on behalf of the user, such as creating
nvd
CVE-2024-0435P4MEDIUMCVSS 5.4≥ unspecified, < 1.0.02024-02-26
CVE-2024-0435 [MEDIUM] CWE-79 CVE-2024-0435: User can send a chat that contains an XSS opportunity that will then run when the chat is sent and o User can send a chat that contains an XSS opportunity that will then run when the chat is sent and on subsequent page loads. Given the minimum requirement for a user to send a chat is to be given access to a workspace via an admin the risk is low. Additionally, the location in which the XSS renders is only limited to the user who submits the XSS. Ult
nvd
CVE-2024-4286P4MEDIUMCVSS 4.9≥ unspecified, < 1.0.02024-05-26
CVE-2024-4286 [MEDIUM] CWE-917 CVE-2024-4286: Mintplex-Labs' anything-llm application is vulnerable to improper neutralization of special elements Mintplex-Labs' anything-llm application is vulnerable to improper neutralization of special elements used in an expression language statement, identified in the commit id `57984fa85c31988b2eff429adfc654c46e0c342a`. The vulnerability arises from the application's handling of user modifications by managers or admins, allowing for the modification of all
nvd
CVE-2024-4284P4MEDIUMCVSS 4.9≥ unspecified, < 1.0.02024-05-19
CVE-2024-4284 [MEDIUM] CWE-400 CVE-2024-4284: A vulnerability in mintplex-labs/anything-llm allows for a denial of service (DoS) condition through A vulnerability in mintplex-labs/anything-llm allows for a denial of service (DoS) condition through the modification of a user's `id` attribute to a value of 0. This issue affects the current version of the software, with the latest commit id `57984fa85c31988b2eff429adfc654c46e0c342a`. By exploiting this vulnerability, an attacker, with manager or ad
nvd
CVE-2024-13060P4MEDIUMCVSS 4.3≥ unspecified, < 1.3.12025-03-20
CVE-2024-13060 [MEDIUM] CWE-862 CVE-2024-13060: A vulnerability in AnythingLLM Docker version 1.3.1 allows users with 'Default' permission to access A vulnerability in AnythingLLM Docker version 1.3.1 allows users with 'Default' permission to access other users' profile pictures by changing the 'id' parameter in the user cookie. This issue is present in versions prior to 1.3.1.
nvd
Mintplex-Labs Anything-Llm vulnerabilities | cvebase