CVE-2024-0436 | mintplex-labs anything-llm up to 0.0.x timing discrepancy

Posted by Angelo Barbosa | Feb 26, 2024 | CVE

A vulnerability has been found in mintplex-labs anything-llm up to 0.0.x and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to observable timing discrepancy.

This vulnerability is known as CVE-2024-0436. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-0436 | mintplex-labs anything-llm up to 0.0.x timing discrepancy

Related Posts

CVE-2023-45673 | laurent22 joplin up to 2.13.2 code injection (GHSA-g8qx-5vcm-3×59)

CVE-2023-47573 | Relyum RELY-PCIe 22.2.1 Web Interface improper authorization

CVE-2024-31036 | NanoMQ 0.21.7 Hexstreams read_byte heap-based overflow (Issue 1722)

CVE-2023-52107 | Huawei HarmonyOS/EMUI WMS Module privileges management