CVE-2024-8550

Name of the Vulnerable Software and Affected Versions: modelscope/agentscope version v0.0.4

Description: A Local File Inclusion (LFI) vulnerability exists in the "/load-workflow" endpoint, allowing an attacker to read arbitrary files from the server, including sensitive files such as API keys, by manipulating the filename parameter. The issue arises due to improper sanitization of user input passed to the os.path.join function, which can be exploited to access files outside the intended directory.

Recommendations: For modelscope/agentscope version v0.0.4, as a temporary workaround, consider disabling the /load-workflow endpoint until a patch is available. Restrict access to the os.path.join function to minimize the risk of exploitation. Avoid using the filename parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.