CVE-2024-41704 | LibreChat up to 0.7.4-rc1 Image pathname traversal

Inserito da Angelo Barbosa | Lug 22, 2024 | CVE

A vulnerability was found in LibreChat up to 0.7.4-rc1. It has been rated as critical. This issue affects some unknown processing of the component Image Handler. The manipulation leads to pathname traversal.

The identification of this vulnerability is CVE-2024-41704. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-41704 | LibreChat up to 0.7.4-rc1 Image pathname traversal

Post correlati

CVE-2024-26928 | Linux Kernel up to 6.1.84/6.6.25/6.8.4/6.9-rc2 smb cifs_debug_files_proc_show use after free

CVE-2024-34244 | libmodbus 3.1.10 modbus_write_bits out-of-bounds

CVE-2024-34441 | Bootstrapped Ventures Easy Affiliate Links Plugin up to 3.7.2 on WordPress cross site scripting

CVE-2024-39562 | Juniper Networks Junos OS Evolved SSH Daemon release of resource (JSA75724)