What did Protect AI report?

Protect AI reported critical vulnerabilities discovered in various open-source AI/ML software. The AI security firm detailed a total of 32 security defects through its Huntr AI bug bounty program.

What are some of the critical-severity issues discovered?

Some of the critical-severity issues discovered include: - CVE-2024-22476 (CVSS score 10): SQL Injection and RCE in Intel Neural Compressor software. Recommendations: Upgrade to the latest release. - CVE-2024-3234 (CVSS score 9.8): LFI due to the use of outdated components in ChuanhuChatGPT. Recommendations: Upgrade to version 20240305. - CVE-2024-3429 (CVSS score 9.8): Arbitrary file reading via path traversal in LoLLMs. Recommendations: Upgrade to version 9.6. - CVE-2024-3584 (CVSS score 9.8): Path traversal in collection name leads to arbitrary file overwrite in Qdrant. Recommendations: Upgrade to version v1.9.0. - CVE-2024-3829 (CVSS score 9.8): Arbitrary file read and write during snapshot recovery in Qdrant. Recommendations: Upgrade to version v1.9.0. - CVE-2024-4146 (CVSS score 9.8): User can access unauthorized projects from org in Lunary. Recommendations: Upgrade to version 1.2.26.

What are the recommendations for mitigating these vulnerabilities?

The recommendations for mitigating these vulnerabilities include upgrading to the latest releases or specific versions mentioned for each affected software. For instance: - Upgrade Intel Neural Compressor software to the latest release. - Upgrade ChuanhuChatGPT to version 20240305. - Upgrade LoLLMs to version 9.6. - Upgrade Qdrant to version v1.9.0. - Upgrade Lunary to version 1.2.26. - Upgrade AnythingLLM to the latest release. - Upgrade Nvidia Triton Inference server to version 24.04.

Advisory

New critical vulnerabilities reported in Open Source AI/ML tools

Q: Were all the vulnerabilities reported to the respective maintainers?

Yes, all vulnerabilities were reported to the respective maintainers at least 45 days before the publication of the report.

published: June 13, 2024

Take action: If you are using Intel Neural Compressor, ChuanhuChatGPT, LoLLMs, Qdrant, Lunary, AnythingLLM or Nvidia Triton Inference server review the advisories and plan to patch.

Learn More

Protect AI reports critical vulnerabilities discovered in various open-source AI/ML. The AI security firm detailed a total of 32 security defects reported through its Huntr AI bug bounty program.

Critical-severity issues

CVE-2024-22476 (CVSS score 10): SQL Injection and RCE in Intel Neural Compressor software. Recommendations: Upgrade to the latest release.
CVE-2024-3234 (CVSS score 9.8): LFI due to the use of outdated components in ChuanhuChatGPT. Recommendations: Upgrade to version 20240305.
CVE-2024-3429 (CVSS score 9.8): Arbitrary file reading via path traversal in LoLLMs. Recommendations: Upgrade to version 9.6.
CVE-2024-3584 (CVSS score 9.8): Path traversal in collection name leads to arbitrary file overwrite in Qdrant. Recommendations: Upgrade to version v1.9.0.
CVE-2024-3829 (CVSS score 9.8): Arbitrary file read and write during snapshot recovery in Qdrant. Recommendations: Upgrade to version v1.9.0.
CVE-2024-4146 (CVSS score 9.8): User can access unauthorized projects from org in Lunary. Recommendations: Upgrade to version 1.2.26.
CVE-2024-3149 (CVSS score 9.6): SSRF in the upload link feature leads to accessing internal Collector API and escalating attack to arbitrary file deletion and limited LFI in AnythingLLM. Recommendations: Upgrade to the latest release.
CVE-2024-5128 (CVSS score 9.4): IDOR allowing view/update/delete of any dataset_prompt/dataset_prompt_variation in any dataset/projects in Lunary. Recommendations: Upgrade to version 1.2.25.
CVE-2024-3761 (CVSS score 9.1): Missing authorization on delete datasets in Lunary. Recommendations: Upgrade to version 1.2.8.
CVE-2024-4315 (CVSS score 9.1): Lack of path sanitization for Windows leads to LFI in LoLLMs. Recommendations: Upgrade to version 9.8.
CVE-2024-5211 (CVSS score 9.1): Path traversal to arbitrary file read/delete/overwrite, DoS attack, and admin account takeover in AnythingLLM. Recommendations: Upgrade to the latest release.
CVE-2024-0087 (CVSS score 9.0): Arbitrary file creation/appending in log file configuration interface can lead to remote code execution in Nvidia Triton Inference server. Recommendations: Upgrade to version 24.04.

Additionally, the report identified a dozen high-severity vulnerabilities in LoLLMs, Lunary, AnythingLLM, Deep Java Library (DJL), Scrapy, and Gradio.

Protect AI notes that all vulnerabilities were reported to the respective maintainers at least 45 days before the publication of the report.

New critical vulnerabilities reported in Open Source AI/ML tools

Read More
Vulnerability in Apache Tomcat actively exploited
Critical security vulnerability reported in Next.js framework
Another critical RCE flaw reported in n8n automation …
Multiple security vulnerabilities reported in SimpleHelp's remote support …
Zero Day Initiative reports 13 vulnerabilities in Ivanti …