CVE-2024-9159
Incorrect Authorization in gaizhenbiao/chuanhuchatgpt
An incorrect authorization vulnerability exists in gaizhenbiao/chuanhuchatgpt version git c91dbfc. The vulnerability allows any user to restart the server at will, leading to a complete loss of availability. The issue arises because the function responsible for restarting the server is not properly guarded by an admin check.
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Productos afectados
gaizhenbiao · gaizhenbiao/chuanhuchatgpt¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →