Security Advisory

CVE-2024-8249

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-20 10:09:41

Last updated 2025-03-20 18:36:01

Assigner @huntr_ai

State PUBLISHED

Description

mintplex-labs/anything-llm version git 6dc3642 contains an unauthenticated Denial of Service (DoS) vulnerability in the API for the embeddable chat functionality. An attacker can exploit this vulnerability by sending a malformed JSON payload to the API endpoint, causing a server crash due to an uncaught exception. This issue is fixed in version 1.2.2.

← Browse all CVEs View on cve.org ↗