CVE-2024-6095
MEDIUM EPSS 82.5%
Published Jul 6, 20241y ago · Modified Jun 17, 20261w ago
5.8 CVSS 3.1
Published Jul 6, 2024 1y ago
Last Modified Jun 17, 2026 1w ago
Description
A vulnerability in the /models/apply endpoint of mudler/localai versions 2.15.0 allows for Server-Side Request Forgery (SSRF) and partial Local File Inclusion (LFI). The endpoint supports both http(s):// and file:// schemes, where the latter can lead to LFI. However, the output is limited due to the length of the error message. This vulnerability can be exploited by an attacker with network access to the LocalAI instance, potentially allowing unauthorized access to internal HTTP(s) servers and partial reading of local files. The issue is fixed in version 2.17.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Changed
Confidentiality Low
Integrity None
Availability None
Threat Intelligence
EPSS Exploit Probability
82.5% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available
Weaknesses 1
CWE-918 Server-Side Request Forgery (SSRF) Validation
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| mudler | localai | * | <2.17.0 |
References 2
- github.com https://github.com/mudler/localai/commit/2fc6fe806b903ac0a70218b21b5c84443a1b0866
- huntr.com https://huntr.com/bounties/4799262d-72dc-43c8-bc99-81d0dce996dc
Remediation
- github.com https://github.com/mudler/localai/commit/2fc6fe806b903ac0a70218b21b5c84443a1b0866