CVE-2024-3152 affects mintplex-labs/anything-llm, a software product prior to version 1.0.0, due to multiple security flaws arising from insufficient input validation in several API endpoints. The vulnerability allows attackers to exploit Server-Side Request Forgery (SSRF) attacks by manipulating requests to internal or external resources, potentially bypassing network restrictions. Additionally, attackers can escalate privileges from default user roles to administrative roles, enabling unauthorized access to sensitive functions. The flaws also permit reading and deleting arbitrary files on the host system, which can lead to data loss or system compromise. The root cause is the application's failure to properly sanitize and validate user inputs before passing them to Prisma ORM functions and other critical backend operations, leading to injection-like behaviors and SSRF vectors. The affected endpoints include /request-token, /workspace/:slug/thread/:threadSlug/update, /system/remove-logo, /system/logo, and the collector's /process endpoint. The CVSS 3.0 score of 8.8 indicates a high-severity vulnerability with network attack vector, low attack complexity, requiring privileges but no user interaction, and impacting confidentiality, integrity, and availability. Although no exploits are currently known in the wild, the combination of SSRF and privilege escalation makes this a critical risk for deployments of this software, especially in environments with sensitive data or critical infrastructure.

For European organizations using mintplex-labs/anything-llm, this vulnerability poses significant risks including unauthorized administrative access, data exfiltration, and potential system disruption. SSRF can be leveraged to access internal services that are otherwise protected by network segmentation, potentially exposing internal APIs, metadata services, or other sensitive resources. Privilege escalation allows attackers to gain full control over the application, facilitating further attacks such as data manipulation, deletion, or lateral movement within the network. The ability to read and delete arbitrary files increases the risk of data breaches and operational downtime. Given the high CVSS score and the critical nature of the affected operations, organizations handling sensitive or regulated data (e.g., financial, healthcare, governmental) face compliance and reputational risks. The lack of known exploits in the wild provides a window for proactive mitigation, but the vulnerability’s severity demands urgent attention to prevent exploitation.

European organizations should immediately audit their deployments of mintplex-labs/anything-llm to identify affected versions and endpoints. Since no official patches are listed, organizations must implement strict input validation and sanitization at all entry points, especially those identified (/request-token, /workspace/:slug/thread/:threadSlug/update, /system/remove-logo, /system/logo, /process). Employ allowlisting for URLs and parameters used in SSRF-prone functions to restrict outbound requests to trusted destinations only. Implement robust access controls and role-based permissions to limit privilege escalation opportunities. Monitor logs for unusual access patterns or unexpected requests to sensitive endpoints. Network segmentation should be enforced to limit SSRF impact by isolating internal services from the application server. Consider deploying Web Application Firewalls (WAFs) with custom rules to detect and block SSRF payloads and injection attempts. Finally, maintain close communication with the vendor for patches or updates and apply them promptly once available.