CVE-2024-6095

MEDIUM EPSS 82.5%
Published Jul 6, 20241y ago · Modified Jun 17, 20261w ago
5.8 CVSS 3.1
Medium
Find Similar
Published Jul 6, 2024 1y ago
Last Modified Jun 17, 2026 1w ago

Description

A vulnerability in the /models/apply endpoint of mudler/localai versions 2.15.0 allows for Server-Side Request Forgery (SSRF) and partial Local File Inclusion (LFI). The endpoint supports both http(s):// and file:// schemes, where the latter can lead to LFI. However, the output is limited due to the length of the error message. This vulnerability can be exploited by an attacker with network access to the LocalAI instance, potentially allowing unauthorized access to internal HTTP(s) servers and partial reading of local files. The issue is fixed in version 2.17.

CVSS Details

Base Score
5.8
Exploitability
3.9
Impact
1.4
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Changed
Confidentiality Low
Integrity None
Availability None

Threat Intelligence

EPSS Exploit Probability
82.5% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 1

CWE-918 Server-Side Request Forgery (SSRF) Validation

Affected Products 1

VendorProductVersionRange
mudlerlocalai* <2.17.0

References 2

  • github.com https://github.com/mudler/localai/commit/2fc6fe806b903ac0a70218b21b5c84443a1b0866
    Patch
  • huntr.com https://huntr.com/bounties/4799262d-72dc-43c8-bc99-81d0dce996dc
    ExploitThird Party Advisory

Remediation

  • github.com https://github.com/mudler/localai/commit/2fc6fe806b903ac0a70218b21b5c84443a1b0866
    Patch