Login Sign Up

CVE-2023-4899

8.8 HIGH
SQL Injection

📋 TL;DR

This SQL injection vulnerability in the Anything-LLM software allows attackers to execute arbitrary SQL commands through user input. It affects all deployments running versions prior to 0.0.1, potentially compromising database integrity and exposing sensitive information.

💻 Affected Systems

Products:
  • mintplex-labs/anything-llm
Versions: All versions prior to 0.0.1
Operating Systems: All platforms running the software
Default Config Vulnerable: ⚠️ Yes
Notes: Affects all deployments of the vulnerable versions regardless of configuration.

📦 What is this software?

Anything Llm by Mintplexlabs

View all CVEs affecting Anything Llm →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including data theft, data manipulation, and potential remote code execution via database functions.

🟠

Likely Case

Unauthorized data access, data modification, and potential privilege escalation within the database.

🟢

If Mitigated

Limited impact with proper input validation and parameterized queries in place.

🌐 Internet-Facing: HIGH - Web applications with SQL injection are prime targets for automated attacks.
🏢 Internal Only: MEDIUM - Internal attackers could still exploit this to gain unauthorized access.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

SQL injection vulnerabilities are commonly exploited with automated tools and require minimal technical skill.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 0.0.1 and later

Vendor Advisory: https://github.com/mintplex-labs/anything-llm/commit/dc3dfbf31495fe316b21ee184b9317b38101d30e

Restart Required: Yes

Instructions:

1. Update to version 0.0.1 or later. 2. Apply the commit dc3dfbf31495fe316b21ee184b9317b38101d30e. 3. Restart the application service.

🔧 Temporary Workarounds

Input Validation Filter

all

Implement strict input validation to reject SQL injection patterns

Implement regex filtering for SQL keywords in user inputs

Web Application Firewall

all

Deploy WAF with SQL injection protection rules

Configure WAF to block SQL injection patterns

🧯 If You Can't Patch

  • Implement network segmentation to isolate the vulnerable system
  • Enable detailed SQL query logging and monitor for suspicious patterns

🔍 How to Verify

Check if Vulnerable:

Check if running version is earlier than 0.0.1 by examining package.json or application version

Check Version:

Check package.json for version field or application settings

Verify Fix Applied:

Verify the commit dc3dfbf31495fe316b21ee184b9317b38101d30e is applied and version is 0.0.1+

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL error messages in application logs
  • Multiple failed login attempts with SQL patterns

Network Indicators:

  • HTTP requests containing SQL keywords in parameters
  • Unusual database connection patterns

SIEM Query:

SELECT * FROM web_logs WHERE url_params CONTAINS 'UNION' OR url_params CONTAINS 'SELECT' OR url_params CONTAINS 'INSERT'

📊 Metadata

CVE ID: CVE-2023-4899
CVSS v3 Score: 8.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-89
Published: September 12, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-4899, you might also want to check these:

CVE-2024-8522 10.0

This vulnerability allows unauthenticated attackers to perform SQL injection attacks on WordPress si...

Same vulnerability type (CWE-89)
CVE-2024-13152 10.0

This SQL injection vulnerability in BSS Software's Mobuy Online Machinery Monitoring Panel allows at...

Same vulnerability type (CWE-89)
CVE-2021-42311 10.0

CVE-2021-42311 is a critical SQL injection vulnerability in Microsoft Defender for IoT that allows r...

Same vulnerability type (CWE-89)