CVE-2024-8501
Published: 20 March 2025
Description
Adversaries may search local file systems and remote file shares for files containing insecurely stored credentials.
Security Summary
CVE-2024-8501 is an arbitrary file download vulnerability in the rpc_agent_client component of modelscope/agentscope version v0.0.4. The issue stems from the download_file method, which permits any user to retrieve arbitrary files from the rpc_agent's host, potentially exposing sensitive information such as configuration files, credentials, and system files.
The vulnerability has a CVSS v3.1 base score of 8.8 (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) and is associated with CWE-36 (Absolute Path Traversal). It can be exploited remotely by any user with low privileges over the network without requiring user interaction, enabling high-impact unauthorized access that could facilitate further attacks like privilege escalation or lateral movement within a network.
Details on the vulnerability, including potential mitigations, are available in the advisory published via the Huntr bounty program at https://huntr.com/bounties/83e433c0-ed2d-4b10-8358-d3c1eee0a47c. The CVE was published on 2025-03-20.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
Arbitrary file download via path traversal directly enables retrieval of sensitive data from the local system (T1005) and unsecured credentials stored in files (T1552.001).