CVE-2024-47170

Name of the Vulnerable Software and Affected Versions Agnai versions prior to 1.0.330

Description A vulnerability in Agnai permits attackers to read arbitrary JSON files at attacker-chosen locations on the server, leading to unauthorized access to sensitive information and exposure of confidential configuration files. This issue affects installations with JSON STORAGE enabled, intended for local/self-hosting only. The vulnerability can be exploited by sending a specially crafted request, such as a GET request to the /api/json/messages/ endpoint with a manipulated file path, allowing an attacker to retrieve the content of any JSON file on the server that the webserver process has read privileges for.

Recommendations For versions prior to 1.0.330, update to version 1.0.330 to fix the issue. As a temporary workaround, consider disabling the JSON STORAGE feature to minimize the risk of exploitation. Restrict access to the /api/json/messages/ endpoint to prevent attackers from sending crafted requests. Avoid using the loadMessages handler in agnai/srv/api/json/index.ts until the issue is resolved.