CVE-2024-1569

Name of the Vulnerable Software and Affected Versions parisneo/lollms-webui (affected versions not specified)

Description The issue is related to uncontrolled resource consumption, allowing attackers to exploit the "/open code in vs code" and similar endpoints without authentication by sending repeated HTTP POST requests. This can lead to the opening of Visual Studio Code or the default folder opener multiple times, exhausting system resources and rendering the host machine unusable.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.