Description

mudler/LocalAI version 2.17.1 allows for arbitrary file write due to improper handling of automatic archive extraction. When model configurations specify additional files as archives (e.g., .tar), these archives are automatically extracted after downloading. This behavior can be exploited to perform a 'tarslip' attack, allowing files to be written to arbitrary locations on the server, bypassing checks that normally restrict files to the models directory. This vulnerability can lead to remote code execution (RCE) by overwriting backend assets used by the server.

INFO

Published Date :

2024-10-29T12:46:54.732Z

Last Modified :

2025-10-15T12:49:47.751Z

Source :

@huntr_ai
AFFECTED PRODUCTS

The following products are affected by CVE-2024-6868 vulnerability.

Vendors Products
Mudler
  • Localai
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-6868.

URL Resource
https://github.com/mudler/localai/commit/a181dd0ebc5d3092fc50f61674d552604fe8ef9c cve-icon cve-icon
https://huntr.com/bounties/752d2376-2d9a-4e17-b462-3c267f9dd229 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact