| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-0436 | Prevent timing attack for single-user password check | mintplex-labs | mintplex-labs/anything-llm | 中危 | - | 2024-02-25 16:25:12 | Deep Dive |
| CVE-2024-0455 | SSRF on AWS deployed instances of AnythingLLM via /metadata | mintplex-labs | mintplex-labs/anything-llm | 中危 | - | 2024-02-25 08:10:17 | Deep Dive |
| CVE-2024-0879 | Authentication bypass in vector-admin domain restriction | Mintplex-Labs | vector-admin | Medium | 6.5 | 2024-01-25 14:41:26 | Deep Dive |
| CVE-2024-22422 | Unauthenticated Denial of Service (DOS) attack in AnythingLLM | Mintplex-Labs | anything-llm | High | 7.5 | 2024-01-19 00:18:02 | Deep Dive |
| CVE-2023-5833 | Improper Access Control in mintplex-labs/anything-llm | mintplex-labs | mintplex-labs/anything-llm | 高危 | - | 2023-10-30 12:24:15 | Deep Dive |
| CVE-2023-5832 | Improper Input Validation in mintplex-labs/anything-llm | mintplex-labs | mintplex-labs/anything-llm | 超危 | - | 2023-10-30 12:24:10 | Deep Dive |
| CVE-2023-4899 | SQL Injection in mintplex-labs/anything-llm | mintplex-labs | mintplex-labs/anything-llm | 高危 | - | 2023-09-11 23:27:51 | Deep Dive |
| CVE-2023-4898 | Authentication Bypass by Primary Weakness in mintplex-labs/anything-llm | mintplex-labs | mintplex-labs/anything-llm | 高危 | - | 2023-09-11 23:27:48 | Deep Dive |
| CVE-2023-4897 | Relative Path Traversal in mintplex-labs/anything-llm | mintplex-labs | mintplex-labs/anything-llm | 超危 | - | 2023-09-11 20:08:41 | Deep Dive |