Description
A vulnerability in the normalizePath function in mintplex-labs/anything-llm version git 296f041 allows for path traversal, leading to arbitrary file read and write in the storage directory. This can result in privilege escalation from manager to admin. The issue is fixed in version 1.2.2.
References (2)
Core 2
Core References
Exploit, Third Party Advisory
https://huntr.com/bounties/7d6c3b7a-1116-450d-b539-9c911a97537e
Scores
CVSS v3
7.2
EPSS
0.0077
EPSS Percentile
50.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
total
Details
CWE
CWE-29
Status
published
Products (1)
mintplexlabs/anythingllm
< 1.2.2
Published
Mar 20, 2025
Tracked Since
Feb 18, 2026