Denial of Service via Bulky Usernames in User Management Module
A vulnerability in the user management module of mintplex-labs/anything-llm allows for a Denial of Service (DoS) by creating users with excessively long usernames. This issue affects the latest version of the software and was patched in version 1.0.0. The vulnerability renders the user management panel unresponsive, preventing administrators from editing, suspending, or deleting users.
Available publicly on Jun 25 2024 | Available with Premium on May 22 2024
Threat Overview
The vulnerability exploits the lack of input validation for username fields in the user management module. Attackers, including managers and invited users, can input an excessively large amount of characters as a username, causing the user management interface to become unresponsive. This unresponsiveness prevents the visibility and functionality of essential user management actions such as editing, suspending, or deleting users. The vulnerability effectively paralyzes administrative capabilities, compromises system security by maintaining unauthorized access, and disrupts normal system operations.
Attack Scenario
An attacker, who could be a manager, an invited user, or a low-privilege user, exploits this vulnerability by submitting a username with an excessive number of characters (e.g., 21766272 characters). This can be done during user creation, account claiming, or by renaming an existing account. Once the bulky username is submitted and processed, the user management panel becomes unresponsive, making it impossible for administrators to manage users effectively.
Who is affected
Administrators and managers of the mintplex-labs/anything-llm system are directly affected as their ability to manage users is severely compromised. Indirectly, all system users are affected due to the potential for operational disruption and compromised system security, which can lead to unauthorized access and further malicious activities.
Technical Report
Want more out of Sightline?
Sightline offers even more for premium customers
Go Premium
We have - related security advisories that are available with Sightline Premium.