CVE-2024-10908

Name of the Vulnerable Software and Affected Versions fastchat version 0.2.36

Description An open redirect issue allows a remote unauthenticated attacker to redirect users to arbitrary websites via a specially crafted URL. This can be exploited for phishing attacks, malware distribution, and credential theft.

Recommendations For version 0.2.36, update to a newer version that contains a fix for this issue to prevent exploitation. As a temporary workaround, consider restricting access to URLs that could be used for redirecting users to minimize the risk of exploitation. Avoid using URLs that could be manipulated by an attacker until the issue is resolved.