cve/2024/CVE-2024-4897.md

### [CVE-2024-4897](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4897)
![](https://img.shields.io/static/v1?label=Product&message=parisneo%2Flollms-webui&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=9.5%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=unspecified%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-76%20Improper%20Neutralization%20of%20Equivalent%20Special%20Elements&color=brightgreen)

### Description

parisneo/lollms-webui, in its latest version, is vulnerable to remote code execution due to an insecure dependency on llama-cpp-python version llama_cpp_python-0.2.61+cpuavx2-cp311-cp311-manylinux_2_31_x86_64. The vulnerability arises from the application's 'binding_zoo' feature, which allows attackers to upload and interact with a malicious model file hosted on hugging-face, leading to remote code execution. The issue is linked to a known vulnerability in llama-cpp-python, CVE-2024-34359, which has not been patched in lollms-webui as of commit b454f40a. The vulnerability is exploitable through the application's handling of model files in the 'bindings_zoo' feature, specifically when processing gguf format model files.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/fkie-cad/nvd-json-data-feeds