Vulnerability Description
Theoretically, it would be possible for an attacker to brute-force the password for an instance in single-user password protection mode via a timing attack given the linear nature of the `!==` used for comparison. The risk is minified by the additional overhead of the request, which varies in a non-constant nature making the attack less reliable to execute
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mintplexlabs | Anythingllm | < 1.0.0 |
Related Weaknesses (CWE)
References
- https://github.com/mintplex-labs/anything-llm/commit/3c859ba3038121b67fb98e87dc5Patch
- https://huntr.com/bounties/3e73cb96-c038-46a1-81b7-4d2215b36268Third Party Advisory
- https://github.com/mintplex-labs/anything-llm/commit/3c859ba3038121b67fb98e87dc5Patch
- https://huntr.com/bounties/3e73cb96-c038-46a1-81b7-4d2215b36268Third Party Advisory
FAQ
What is CVE-2024-0436?
CVE-2024-0436 is a vulnerability with a CVSS score of 5.9 (MEDIUM). Theoretically, it would be possible for an attacker to brute-force the password for an instance in single-user password protection mode via a timing attack given the linear nature of the `!==` used fo...
How severe is CVE-2024-0436?
CVE-2024-0436 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-0436?
Check the references section above for vendor advisories and patch information. Affected products include: Mintplexlabs Anythingllm.