A command injection vulnerability exists in the mudler/localai version 2.14.0. The vulnerability arises from the application's handling of the backend parameter in the configuration file, which is used in the name of the initialized process. An attacker can exploit this vulnerability by manipulating the path of the vulnerable binary file specified in the backend parameter, allowing the execution of arbitrary code on the system. This issue is due to improper neutralization of special elements used in an OS command, leading to potential full control over the affected system.
The vulnerability results from improper neutralization of special characters in the 'backend' parameter of the application configuration file. This parameter is used to specify the path of the initiated binary process. An attacker can manipulate the path to the referenced binary file by injecting malicious system commands, which are then executed by the operating system without proper validation. As a result, the application unknowingly runs commands provided by the attacker with the privileges of the LocalAI process.
An attacker can gain full control over the operating system on which LocalAI runs, including arbitrary code execution, data theft, and compromise of system integrity and availability.
Patches available from the vendor should be applied according to references — the fix was published in the GitHub repository under commit 1a3dedece06cab1acc3332055d285ac540a47f0e. Immediate update to a version containing the indicated patch is recommended.
mudler/LocalAI version 2.14.0
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HMudler Localai
APPMudler2.14.0
Related vulnerabilities
Podatność tarslip w LocalAI umożliwiająca RCE przez arbitralny zapis pliku
Path traversal w LocalAI umożliwiający usuwanie dowolnych plików
Command injection w mudler/LocalAI — endpoint transkrypcji audio
mudler/localai version 2.17.1 is vulnerable to remote code execution. The vulnerability arises because the loc...
mudler/localai version v2.21.1 contains a Cross-Site Scripting (XSS) vulnerability in its search functionality...