CVE-2024-3283

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-3283
A vulnerability in mintplex-labs/anything-llm allows users with manager roles to escalate their privileges to admin roles through a mass assignment issue. The '/admin/system-preferences' API endpoint improperly authorizes manager-level users to modify the 'multi_user_mode' system variable, enabling them to access the '/api/system/enable-multi-user' endpoint and create a new admin user. This issue results from the endpoint accepting a full JSON object in the request body without proper validation of modifiable fields, leading to unauthorized modification of system settings and subsequent privilege escalation.

7.2 /10

CVSS v3 : HIGH

V3 Legend

Vector : AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploitability : 1.2 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://github.com/mintplex-labs/anything-llm/commit/52fac844221a9b951d08ceb93c4c014e9397b1f2
https://huntr.com/bounties/a8000cce-0ecb-4820-9cfb-57ba6f4d58a2
https://github.com/mintplex-labs/anything-llm/commit/52fac844221a9b951d08ceb93c4c014e9397b1f2
https://huntr.com/bounties/a8000cce-0ecb-4820-9cfb-57ba6f4d58a2
Configurations

No configuration.

History

21 Nov 2024, 09:29

Type Values Removed Values Added
Summary
  • (es) Una vulnerabilidad en mintplex-labs/anything-llm permite a los usuarios con funciones de administrador escalar sus privilegios a funciones de administrador a través de un problema de asignación masiva. El endpoint de la API '/admin/system-preferences' autoriza incorrectamente a los usuarios de nivel de administrador a modificar la variable del sistema 'multi_user_mode', lo que les permite acceder al endpoint '/api/system/enable-multi-user' y crear un nuevo usuario administrador. Este problema se produce cuando el endpoint acepta un objeto JSON completo en el cuerpo de la solicitud sin la validación adecuada de los campos modificables, lo que lleva a la modificación no autorizada de la configuración del sistema y la posterior escalada de privilegios.
References () https://github.com/mintplex-labs/anything-llm/commit/52fac844221a9b951d08ceb93c4c014e9397b1f2 - () https://github.com/mintplex-labs/anything-llm/commit/52fac844221a9b951d08ceb93c4c014e9397b1f2 -
References () https://huntr.com/bounties/a8000cce-0ecb-4820-9cfb-57ba6f4d58a2 - () https://huntr.com/bounties/a8000cce-0ecb-4820-9cfb-57ba6f4d58a2 -

10 Apr 2024, 17:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-04-10 17:15

Updated : 2024-11-21 09:29

NVD link : CVE-2024-3283

Mitre link : CVE-2024-3283

CVE.ORG link : CVE-2024-3283

JSON object : View

Products Affected

No product.

CWE
CWE-915

Improperly Controlled Modification of Dynamically-Determined Object Attributes


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024