CVE-2024-6331
HIGHstitionai/devika >=2024-05-02 - Local File Read via Prompt Injection
Title source: llmDescription
stitionai/devika main branch as of commit cdfb782b0e634b773b10963c8034dc9207ba1f9f is vulnerable to Local File Read (LFI) by Prompt Injection. The integration of Google Gimini 1.0 Pro with `HarmBlockThreshold.BLOCK_NONE` for `HarmCategory.HARM_CATEGORY_HATE_SPEECH` and `HarmCategory.HARM_CATEGORY_HARASSMENT` in `safety_settings` disables content protection. This allows malicious commands to be executed, such as reading sensitive file contents like `/etc/passwd`.
References (1)
Core 1
Core References
Exploit, Third Party Advisory
https://huntr.com/bounties/d5ac1051-22fa-42f0-8d82-73267482e60f
Scores
CVSS v3
7.5
EPSS
0.0050
EPSS Percentile
38.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-74
Status
published
Products (1)
stitionai/devika
2024-05-02
Published
Aug 04, 2024
Tracked Since
Feb 18, 2026