Description
oobabooga text-generation-webui trust_remote_code Reliance on Untrusted Inputs Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of oobabooga text-generation-webui. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the trust_remote_code parameter provided to the load endpoint. The issue results from the lack of proper validation of a user-supplied argument before using it to load a model. An attacker can leverage this vulnerability to execute code in the context of the service account. . Was ZDI-CAN-26680.
EPSS Score:
0%
Comprehensive Technical Analysis of EUVD-2025-38157
1. Vulnerability Assessment and Severity Evaluation
Vulnerability Description:
The vulnerability identified as EUVD-2025-38157 affects the oobabooga text-generation-webui software. Specifically, it involves the trust_remote_code parameter in the load endpoint, which fails to properly validate user-supplied input. This flaw allows remote attackers to execute arbitrary code without requiring authentication.
Severity Evaluation:
The vulnerability has a CVSS Base Score of 9.8, which is classified as critical. The CVSS vector CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H indicates the following:
- Attack Vector (AV): Network (N)
- Attack Complexity (AC): Low (L)
- Privileges Required (PR): None (N)
- User Interaction (UI): None (N)
- Scope (S): Unchanged (U)
- Confidentiality (C): High (H)
- Integrity (I): High (H)
- Availability (A): High (H)
This high severity score underscores the critical nature of the vulnerability, as it can be exploited remotely with low complexity and without any user interaction or privileges.
2. Potential Attack Vectors and Exploitation Methods
Attack Vectors:
- Remote Code Execution (RCE): An attacker can send a specially crafted request to the load endpoint with a malicious
trust_remote_codeparameter, leading to arbitrary code execution. - Unauthenticated Access: The vulnerability does not require authentication, making it easier for attackers to exploit.
Exploitation Methods:
- Crafting Malicious Input: An attacker can craft a payload that exploits the lack of validation in the
trust_remote_codeparameter. - Automated Scripts: Attackers can use automated scripts to scan for vulnerable installations and exploit them en masse.
3. Affected Systems and Software Versions
Affected Software:
- Product:
text-generation-webui - Version: 2.5
- Vendor: oobabooga
Affected Systems:
- Any system running the vulnerable version of
text-generation-webuiis at risk. This includes servers, cloud instances, and any other environments where the software is deployed.
4. Recommended Mitigation Strategies
Immediate Actions:
- Patching: Apply the latest security patches provided by the vendor. The relevant commit (
b5a6904c4ac4049823396090360b6f566f4e4603) addresses the vulnerability. - Input Validation: Ensure that all user-supplied inputs are properly validated and sanitized.
- Access Controls: Implement strict access controls to limit exposure to the vulnerable endpoint.
Long-Term Strategies:
- Regular Updates: Maintain a regular update schedule for all software components.
- Security Audits: Conduct regular security audits and code reviews to identify and mitigate similar vulnerabilities.
- Intrusion Detection: Deploy intrusion detection systems (IDS) to monitor for suspicious activity.
5. Impact on European Cybersecurity Landscape
Regulatory Compliance:
- Organizations must comply with regulations such as GDPR, which mandates robust security measures to protect personal data.
- Failure to address this vulnerability could result in data breaches, leading to regulatory penalties and reputational damage.
Critical Infrastructure:
- If the affected software is used in critical infrastructure, the impact could be severe, affecting essential services and national security.
Public Trust:
- High-profile breaches can erode public trust in digital services, impacting the broader European digital economy.
6. Technical Details for Security Professionals
Vulnerability Details:
- Endpoint: The vulnerability is located in the load endpoint of the
text-generation-webui. - Parameter: The
trust_remote_codeparameter is the point of failure due to lack of proper validation. - Exploitation: An attacker can send a request with a malicious payload in the
trust_remote_codeparameter, leading to code execution.
Mitigation Steps:
- Code Review: Ensure that all input parameters are validated and sanitized before processing.
- Security Patches: Apply the patch from the commit
b5a6904c4ac4049823396090360b6f566f4e4603. - Network Security: Implement network-level protections such as firewalls and intrusion prevention systems (IPS) to block malicious traffic.
References:
By addressing this vulnerability promptly and comprehensively, organizations can mitigate the risk of exploitation and maintain the integrity and security of their systems.