We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-53844

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in labsai/eddi



Description

E.D.D.I (Enhanced Dialog Driven Interface) is a middleware to connect and manage LLM API bots. A path traversal vulnerability exists in the backup export functionality of EDDI, as implemented in `RestExportService.java`. This vulnerability allows an attacker to access sensitive files on the server by manipulating the `botFilename` parameter in requests. The application fails to sanitize user input, enabling malicious inputs such as `..%2f..%2fetc%2fpasswd` to access arbitrary files. However, the **severity of this vulnerability is significantly limited** because EDDI typically runs within a **Docker container**, which provides additional layers of isolation and restricted permissions. As a result, while this vulnerability exposes files within the container, it does not inherently threaten the underlying host system or other containers. A patch is required to sanitize and validate the botFilename input parameter. Users should ensure they are using version 5.4 which contains this patdch. For temporary mitigation, access to the vulnerable endpoint should be restricted through firewall rules or authentication mechanisms.

Reserved 2024-11-22 | Published 2024-11-26 | Updated 2024-11-26 | Assigner GitHub_M


MEDIUM: 6.3CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Problem types

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Product status

>= 4.3, < 5.4
affected

References

github.com/...i/EDDI/security/advisories/GHSA-49qh-39wc-4p8j

github.com/...i/labs/eddi/backup/impl/RestExportService.java

cve.org (CVE-2024-53844)

nvd.nist.gov (CVE-2024-53844)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2024-53844

Support options

Helpdesk Chat, Email, Knowledgebase