A vulnerability has been found in parisneo lollms up to 9.4.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /set_personality_config of the component Configuration Handler. The manipulation leads to path traversal.
This vulnerability is known as CVE-2024-5824. The attack can be launched remotely. There is no exploit available.