CVE-2024-7783 | mintplex-labs anything-llm up to 1.0.2 JSON Web Token cleartext storage

Posted by Angelo Barbosa | Oct 29, 2024 | CVE

A vulnerability classified as problematic has been found in mintplex-labs anything-llm up to 1.0.2. This affects an unknown part of the component JSON Web Token Handler. The manipulation leads to cleartext storage of sensitive information.

This vulnerability is uniquely identified as CVE-2024-7783. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-7783 | mintplex-labs anything-llm up to 1.0.2 JSON Web Token cleartext storage

Related Posts

CVE-2024-31005 | Axiomatic Bento4 1.6.0-641 Ap4MdhdAtom.cpp AP4_MdhdAtom Privilege Escalation (Issue 941)

CVE-2024-41037 | Linux Kernel up to 6.6.40/6.9.9 ASoC hw_params_upon_resume null pointer dereference (8246bbf818ed/993af0f2d9f2/9065693dcc13)

CVE-2024-6573 | Intelligence Plugin up to 1.4.0 on WordPress information disclosure

CVE-2024-22299 | Foliovision FV Flowplayer Video Player Plugin up to 7.5.41.7212 on WordPress cross site scripting