CVE-2024-11031

CVSS v3.1

7.7

High

Vector

AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions binary-husky/gpt academic version 3.83

Description A Server-Side Request Forgery (SSRF) issue exists in the Markdown Translate.get files from everything() API, allowing attackers to download arbitrary web hosts by exploiting the HotReload plugin function. This function only checks if the link starts with 'http', enabling abuse of the victim GPT Academic's Gradio Web server credentials to access unauthorized web resources.

Recommendations For version 3.83, consider disabling the HotReload plugin function or restricting its use to prevent exploitation until a patch is available. Additionally, restrict access to the Markdown Translate.get files from everything() API to minimize the risk of unauthorized web resource access.

Exploit

Fix

Information Disclosure

SSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-918

Related Identifiers

CVE-2024-11031

Affected Products

Gradio

Hotreload

Binary-Husky/Gpt Academic

CVE-2024-11031

Weakness Enumeration

Related Identifiers

Affected Products

References · 7