Arbitrary File Download in modelscope/agentscope

Root

Cause

CVE-2024-8501 is an arbitrary file download vulnerability found in the rpc_agent_client component of modelscope/agentscope version v0.0.4. The download_file method does not restrict the target path, enabling an attacker to request any file on the rpc_agent's host. The vulnerability stems from a lack of input validation or path sanitization in this function [1][2].

Exploitation

Conditions

No authentication or special privileges are required to trigger the vulnerability. Any user who can communicate with the rpc_agent can call the download_file method. The attack can be performed remotely if the service is exposed, making it a low-barrier exploit path [3].

Impact

An attacker can download arbitrary files from the rpc_agent's host, including configuration files, credentials, and system files. This information disclosure can lead to further compromise such as privilege escalation or lateral movement within the network [2][3].

Mitigation

As of the published date (2025-03-20), the vendor has not released a patched version. Users should apply network-level controls, restrict access to the rpc_agent, or upgrade to a newer version if a fix becomes available. No workaround has been provided [1][3].