CVE-2026-24477— AnythingLLM 安全漏洞
公开利用映射 1
Nuclei · 1 CVE-2026-24477.yaml [template]
可能的 ATT&CK 技术 1AI
T1530 · Data from Cloud Storage获取后续新漏洞提醒登录后订阅
一、 漏洞 CVE-2026-24477 基础信息
漏洞信息
对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗ 尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
AnythingLLM has key leak in `systemSettings.js`
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. If AnythingLLM prior to version 1.10.0 is configured to use Qdrant as the vector database with an API key, this QdrantApiKey could be exposed in plain text to unauthenticated users via the `/api/setup-complete` endpoint. Leakage of QdrantApiKey allows an unauthenticated attacker full read/write access to the Qdrant vector database instance used by AnythingLLM. Since Qdrant often stores the core knowledge base for RAG in AnythingLLM, this can lead to complete compromise of the semantic search / retrieval functionality and indirect leakage of confidential uploaded documents. Version 1.10.0 patches the issue.
来源: 美国国家漏洞数据库 NVD
CVSS Information
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
通过发送数据的信息暴露
来源: 美国国家漏洞数据库 NVD
Vulnerability Title
AnythingLLM 安全漏洞
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Description
AnythingLLM是Mintplex开源的一个一体化AI应用程序。 AnythingLLM 1.10.0之前版本存在安全漏洞,该漏洞源于/api/setup-complete端点以明文暴露QdrantApiKey,可能导致攻击者获得对向量数据库的读写访问权限。
来源: 中国国家信息安全漏洞库 CNNVD
CVSS Information
N/A
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Type
N/A
来源: 中国国家信息安全漏洞库 CNNVD
受影响产品
| 厂商 | 产品 | 影响版本 | CPE | 订阅 |
|---|---|---|---|---|
| Mintplex-Labs | anything-llm | < 1.10.0 | - |
二、漏洞 CVE-2026-24477 的公开POC
| # | POC 描述 | 源链接 | 神龙链接 |
|---|---|---|---|
| 1 | AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. If AnythingLLM prior to version 1.10.0 is configured to use Qdrant as the vector database with an API key, this QdrantApiKey could be exposed in plain text to unauthenticated users via the `/api/setup-complete` endpoint. Leakage of QdrantApiKey allows an unauthenticated attacker full read/write access to the Qdrant vector database instance used by AnythingLLM. Since Qdrant often stores the core knowledge base for RAG in AnythingLLM, this can lead to complete compromise of the semantic search / retrieval functionality and indirect leakage of confidential uploaded documents. Version 1.10.0 patches the issue. | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2026/CVE-2026-24477.yaml | POC详情 |
AI 生成 POC高级
未找到公开 POC。
登录以生成 AI POC三、漏洞 CVE-2026-24477 的情报信息
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same weakness: CWE-201
- CVE-2026-57318
WordPress Site Reviews 插件 <= 8.0.11 敏感数据泄露漏洞 - CVE-2026-54834
WordPress Object Cache 4 everyone插件<=2.3.2敏感数据泄露漏洞 - CVE-2026-54848
WordPress APIExperts Square for WooCommerce <=4.7.3 敏感数据泄露漏洞 - CVE-2026-54841
WordPress Vitepos插件≤3.4.2 敏感数据泄露漏洞 - CVE-2026-54821
WordPress Visual Link Preview <=2.3.1 敏感信息泄露漏洞
V. Comments for CVE-2026-24477
暂无评论