CVE-2024-53844 (GCVE-0-2024-53844)
Vulnerability from cvelistv5 – Published: 2024-11-26 18:37 – Updated: 2024-11-26 21:03
VLAI?
Title
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in labsai/eddi
Summary
E.D.D.I (Enhanced Dialog Driven Interface) is a middleware to connect and manage LLM API bots. A path traversal vulnerability exists in the backup export functionality of EDDI, as implemented in `RestExportService.java`. This vulnerability allows an attacker to access sensitive files on the server by manipulating the `botFilename` parameter in requests. The application fails to sanitize user input, enabling malicious inputs such as `..%2f..%2fetc%2fpasswd` to access arbitrary files. However, the **severity of this vulnerability is significantly limited** because EDDI typically runs within a **Docker container**, which provides additional layers of isolation and restricted permissions. As a result, while this vulnerability exposes files within the container, it does not inherently threaten the underlying host system or other containers. A patch is required to sanitize and validate the botFilename input parameter. Users should ensure they are using version 5.4 which contains this patdch. For temporary mitigation, access to the vulnerable endpoint should be restricted through firewall rules or authentication mechanisms.
Severity ?
6.3 (Medium)
CWE
- CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-53844",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-11-26T21:03:39.697863Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-11-26T21:03:48.160Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "EDDI",
"vendor": "labsai",
"versions": [
{
"status": "affected",
"version": "\u003e= 4.3, \u003c 5.4"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "E.D.D.I (Enhanced Dialog Driven Interface) is a middleware to connect and manage LLM API bots. A path traversal vulnerability exists in the backup export functionality of EDDI, as implemented in `RestExportService.java`. This vulnerability allows an attacker to access sensitive files on the server by manipulating the `botFilename` parameter in requests. The application fails to sanitize user input, enabling malicious inputs such as `..%2f..%2fetc%2fpasswd` to access arbitrary files. However, the **severity of this vulnerability is significantly limited** because EDDI typically runs within a **Docker container**, which provides additional layers of isolation and restricted permissions. As a result, while this vulnerability exposes files within the container, it does not inherently threaten the underlying host system or other containers. A patch is required to sanitize and validate the botFilename input parameter. Users should ensure they are using version 5.4 which contains this patdch. For temporary mitigation, access to the vulnerable endpoint should be restricted through firewall rules or authentication mechanisms."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-22",
"description": "CWE-22: Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-11-26T18:37:51.909Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/labsai/EDDI/security/advisories/GHSA-49qh-39wc-4p8j",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/labsai/EDDI/security/advisories/GHSA-49qh-39wc-4p8j"
},
{
"name": "https://github.com/labsai/EDDI/blob/release/5.3.3/src/main/java/ai/labs/eddi/backup/impl/RestExportService.java#L95",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/labsai/EDDI/blob/release/5.3.3/src/main/java/ai/labs/eddi/backup/impl/RestExportService.java#L95"
}
],
"source": {
"advisory": "GHSA-49qh-39wc-4p8j",
"discovery": "UNKNOWN"
},
"title": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027) in labsai/eddi"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2024-53844",
"datePublished": "2024-11-26T18:37:51.909Z",
"dateReserved": "2024-11-22T17:30:02.139Z",
"dateUpdated": "2024-11-26T21:03:48.160Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"descriptions": "[{\"lang\": \"en\", \"value\": \"E.D.D.I (Enhanced Dialog Driven Interface) is a middleware to connect and manage LLM API bots. A path traversal vulnerability exists in the backup export functionality of EDDI, as implemented in `RestExportService.java`. This vulnerability allows an attacker to access sensitive files on the server by manipulating the `botFilename` parameter in requests. The application fails to sanitize user input, enabling malicious inputs such as `..%2f..%2fetc%2fpasswd` to access arbitrary files. However, the **severity of this vulnerability is significantly limited** because EDDI typically runs within a **Docker container**, which provides additional layers of isolation and restricted permissions. As a result, while this vulnerability exposes files within the container, it does not inherently threaten the underlying host system or other containers. A patch is required to sanitize and validate the botFilename input parameter. Users should ensure they are using version 5.4 which contains this patdch. For temporary mitigation, access to the vulnerable endpoint should be restricted through firewall rules or authentication mechanisms.\"}, {\"lang\": \"es\", \"value\": \"EDDI (Enhanced Dialog Driven Interface) es un middleware para conectar y administrar bots de API LLM. Existe una vulnerabilidad de recorrido de ruta en la funcionalidad de exportaci\\u00f3n de respaldo de EDDI, tal como se implement\\u00f3 en `RestExportService.java`. Esta vulnerabilidad permite a un atacante acceder a archivos confidenciales en el servidor manipulando el par\\u00e1metro `botFilename` en las solicitudes. La aplicaci\\u00f3n no puede sanear la entrada del usuario, lo que permite que entradas maliciosas como `..%2f..%2fetc%2fpasswd` accedan a archivos arbitrarios. Sin embargo, la **gravedad de esta vulnerabilidad es significativamente limitada** porque EDDI generalmente se ejecuta dentro de un **contenedor Docker**, que proporciona capas adicionales de aislamiento y permisos restringidos. Como resultado, si bien esta vulnerabilidad expone los archivos dentro del contenedor, no amenaza inherentemente al sistema host subyacente ni a otros contenedores. Se requiere un parche para desinfectar y validar el par\\u00e1metro de entrada botFilename. Los usuarios deben asegurarse de estar usando la versi\\u00f3n 5.4 que contiene este parche. Para una mitigaci\\u00f3n temporal, el acceso al endpoint vulnerable debe restringirse mediante reglas de firewall o mecanismos de autenticaci\\u00f3n.\"}]",
"id": "CVE-2024-53844",
"lastModified": "2024-11-26T19:15:31.463",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L\", \"baseScore\": 6.3, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"LOW\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 3.4}]}",
"published": "2024-11-26T19:15:31.463",
"references": "[{\"url\": \"https://github.com/labsai/EDDI/blob/release/5.3.3/src/main/java/ai/labs/eddi/backup/impl/RestExportService.java#L95\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://github.com/labsai/EDDI/security/advisories/GHSA-49qh-39wc-4p8j\", \"source\": \"security-advisories@github.com\"}]",
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": "[{\"source\": \"security-advisories@github.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-22\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-53844\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2024-11-26T19:15:31.463\",\"lastModified\":\"2024-11-26T19:15:31.463\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"E.D.D.I (Enhanced Dialog Driven Interface) is a middleware to connect and manage LLM API bots. A path traversal vulnerability exists in the backup export functionality of EDDI, as implemented in `RestExportService.java`. This vulnerability allows an attacker to access sensitive files on the server by manipulating the `botFilename` parameter in requests. The application fails to sanitize user input, enabling malicious inputs such as `..%2f..%2fetc%2fpasswd` to access arbitrary files. However, the **severity of this vulnerability is significantly limited** because EDDI typically runs within a **Docker container**, which provides additional layers of isolation and restricted permissions. As a result, while this vulnerability exposes files within the container, it does not inherently threaten the underlying host system or other containers. A patch is required to sanitize and validate the botFilename input parameter. Users should ensure they are using version 5.4 which contains this patdch. For temporary mitigation, access to the vulnerable endpoint should be restricted through firewall rules or authentication mechanisms.\"},{\"lang\":\"es\",\"value\":\"EDDI (Enhanced Dialog Driven Interface) es un middleware para conectar y administrar bots de API LLM. Existe una vulnerabilidad de recorrido de ruta en la funcionalidad de exportaci\u00f3n de respaldo de EDDI, tal como se implement\u00f3 en `RestExportService.java`. Esta vulnerabilidad permite a un atacante acceder a archivos confidenciales en el servidor manipulando el par\u00e1metro `botFilename` en las solicitudes. La aplicaci\u00f3n no puede sanear la entrada del usuario, lo que permite que entradas maliciosas como `..%2f..%2fetc%2fpasswd` accedan a archivos arbitrarios. Sin embargo, la **gravedad de esta vulnerabilidad es significativamente limitada** porque EDDI generalmente se ejecuta dentro de un **contenedor Docker**, que proporciona capas adicionales de aislamiento y permisos restringidos. Como resultado, si bien esta vulnerabilidad expone los archivos dentro del contenedor, no amenaza inherentemente al sistema host subyacente ni a otros contenedores. Se requiere un parche para desinfectar y validar el par\u00e1metro de entrada botFilename. Los usuarios deben asegurarse de estar usando la versi\u00f3n 5.4 que contiene este parche. Para una mitigaci\u00f3n temporal, el acceso al endpoint vulnerable debe restringirse mediante reglas de firewall o mecanismos de autenticaci\u00f3n.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L\",\"baseScore\":6.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":2.8,\"impactScore\":3.4}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-22\"}]}],\"references\":[{\"url\":\"https://github.com/labsai/EDDI/blob/release/5.3.3/src/main/java/ai/labs/eddi/backup/impl/RestExportService.java#L95\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/labsai/EDDI/security/advisories/GHSA-49qh-39wc-4p8j\",\"source\":\"security-advisories@github.com\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-53844\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-11-26T21:03:39.697863Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-11-26T21:03:44.757Z\"}}], \"cna\": {\"title\": \"Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027) in labsai/eddi\", \"source\": {\"advisory\": \"GHSA-49qh-39wc-4p8j\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 6.3, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"LOW\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"LOW\"}}], \"affected\": [{\"vendor\": \"labsai\", \"product\": \"EDDI\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003e= 4.3, \u003c 5.4\"}]}], \"references\": [{\"url\": \"https://github.com/labsai/EDDI/security/advisories/GHSA-49qh-39wc-4p8j\", \"name\": \"https://github.com/labsai/EDDI/security/advisories/GHSA-49qh-39wc-4p8j\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/labsai/EDDI/blob/release/5.3.3/src/main/java/ai/labs/eddi/backup/impl/RestExportService.java#L95\", \"name\": \"https://github.com/labsai/EDDI/blob/release/5.3.3/src/main/java/ai/labs/eddi/backup/impl/RestExportService.java#L95\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"E.D.D.I (Enhanced Dialog Driven Interface) is a middleware to connect and manage LLM API bots. A path traversal vulnerability exists in the backup export functionality of EDDI, as implemented in `RestExportService.java`. This vulnerability allows an attacker to access sensitive files on the server by manipulating the `botFilename` parameter in requests. The application fails to sanitize user input, enabling malicious inputs such as `..%2f..%2fetc%2fpasswd` to access arbitrary files. However, the **severity of this vulnerability is significantly limited** because EDDI typically runs within a **Docker container**, which provides additional layers of isolation and restricted permissions. As a result, while this vulnerability exposes files within the container, it does not inherently threaten the underlying host system or other containers. A patch is required to sanitize and validate the botFilename input parameter. Users should ensure they are using version 5.4 which contains this patdch. For temporary mitigation, access to the vulnerable endpoint should be restricted through firewall rules or authentication mechanisms.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-22\", \"description\": \"CWE-22: Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2024-11-26T18:37:51.909Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-53844\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-11-26T21:03:48.160Z\", \"dateReserved\": \"2024-11-22T17:30:02.139Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2024-11-26T18:37:51.909Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…