CVE-2024-10901

Name of the Vulnerable Software and Affected Versions eosphoros-ai/db-gpt version v0.6.0

Description The issue allows execution of arbitrary SQL queries without access control through the web API endpoint POST /api/v1/editor/chart/run. This can be exploited to perform Arbitrary File Write, enabling attackers to write arbitrary files to the victim's file system, potentially leading to Remote Code Execution (RCE) by writing malicious files.

Recommendations For eosphoros-ai/db-gpt version v0.6.0, consider disabling access to the POST /api/v1/editor/chart/run API endpoint until a patch is available to prevent exploitation. Additionally, restrict write access to sensitive directories, such as Python's /site-packages/ directory, to minimize the risk of malicious file writes.