CVE-2024-10714

Name of the Vulnerable Software and Affected Versions binary-husky/gpt academic version 3.83

Description A Denial of Service (DoS) issue allows an attacker to cause the server to become inaccessible by adding excessive characters to the end of a multipart boundary during file upload. This results in the server continuously processing each character and displaying warnings. The issue is identified when the terminal shows a warning: 'multipart.multipart Consuming a byte '0x2d' in end state'.

Recommendations For binary-husky/gpt academic version 3.83, consider restricting file upload capabilities to prevent excessive character additions until a patch is available. As a temporary workaround, monitor server logs for the warning 'multipart.multipart Consuming a byte '0x2d' in end state' to quickly identify potential DoS attacks and take appropriate action.