CVE-2024-0798 | mintplex-labs anything-llm up to 0.0.x HTTP DELETE Request least privilege violation

Posted by Angelo Barbosa | Feb 26, 2024 | CVE

A vulnerability, which was classified as problematic, was found in mintplex-labs anything-llm up to 0.0.x. Affected is an unknown function of the component HTTP DELETE Request Handler. The manipulation leads to least privilege violation.

This vulnerability is traded as CVE-2024-0798. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-0798 | mintplex-labs anything-llm up to 0.0.x HTTP DELETE Request least privilege violation

Related Posts

CVE-2023-7172 | PHPGurukul Hospital Management System 1.0 Admin Dashboard sql injection

CVE-2023-36236 | Webkil Bagisto up to 1.5.0 SVG File Upload cross site scripting

CVE-2024-25941 | FreeBSD jail information disclosure

CVE-2024-25841 | Common-Services So Flexibilite Module up to 4.1.25 on PrestaShop cross site scripting