CVE-2024-9159

Name of the Vulnerable Software and Affected Versions gaizhenbiao/chuanhuchatgpt version git c91dbfc

Description An incorrect authorization issue exists, allowing any user to restart the server at will. This leads to a complete loss of availability due to the function responsible for restarting the server not being properly guarded by an admin check.

Recommendations For gaizhenbiao/chuanhuchatgpt version git c91dbfc, consider implementing an admin check for the server restart function to prevent unauthorized access. As a temporary workaround, restrict access to the server restart functionality to minimize the risk of exploitation.