CVE-2024-4343 CRITICAL

CVE-2024-4343: Python Command Injection in imartinez/privategpt

Vendor Imartinez

Product imartinez/privategpt

Weakness CWE-78

Published November 14, 2024

Last update November 18, 2024

View on NVD All CVEs

CVSS base score

9.8/10

Attack vector Network

Attack complexity Low

Privileges required None

User interaction None

Confidentiality High

Integrity High

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

Description

A Python command injection vulnerability exists in the `SagemakerLLM` class's `complete()` method within `./private_gpt/components/llm/custom/sagemaker.py` of the imartinez/privategpt application, versions up to and including 0.3.0. The vulnerability arises due to the use of the `eval()` function to parse a string received from a remote AWS SageMaker LLM endpoint into a dictionary. This method of parsing is unsafe as it can execute arbitrary Python code contained within the response. An attacker can exploit this vulnerability by manipulating the response from the AWS SageMaker LLM endpoint to include malicious Python code, leading to potential execution of arbitrary commands on the system hosting the application. The issue is fixed in version 0.6.0.

Key dates

Disclosure timeline

November 14, 2024 CVE published

November 18, 2024 Record updated

Identifiers

CVE CVE-2024-4343

CWE CWE-78

CVSS 9.8 / CRITICAL

Affected versions

Vendor Imartinez

Product imartinez/privategpt

Affected ≥ unspecified and < 0.6.0