CVE-2024-5181 | mudler localai up to 2.14.0 Configuration File backend os command injection

Posted by Angelo Barbosa | Jun 26, 2024 | CVE

A vulnerability was found in mudler localai up to 2.14.0. It has been declared as critical. This vulnerability affects unknown code of the component Configuration File Handler. The manipulation of the argument backend leads to os command injection.

This vulnerability was named CVE-2024-5181. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-5181 | mudler localai up to 2.14.0 Configuration File backend os command injection

Related Posts

CVE-2023-50873 | Marios Alexandrou Add Any Extension to Pages Plugin up to 1.4 on WordPress cross-site request forgery

CVE-2023-51793 | FFmpeg libavutil/imgutils.c image_copy_plane buffer overflow (ID 10743)

CVE-2022-45135 | Apache Cocoon =2.2.x sql injection

CVE-2024-1640 | bitpressadmin Contact Form Builder Plugin up to 2.10.1 on WordPress bitforms_update_form_entry authorization