CVE-2024-31224 - Vulnerability Details - OpenCVE

GPT Academic provides interactive interfaces for large language models. A vulnerability was found in gpt_academic versions 3.64 through 3.73. The server deserializes untrustworthy data from the client, which may risk remote code execution. Any device that exposes the GPT Academic service to the Internet is vulnerable. Version 3.74 contains a patch for the issue. There are no known workarounds aside from upgrading to a patched version.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

References

Link	Providers
https://github.com/binary-husky/gpt_academic/commit/8af6c0cab6d96f5c4520bec85b24802e6e823f35
https://github.com/binary-husky/gpt_academic/pull/1648
https://github.com/binary-husky/gpt_academic/security/advisories/GHSA-jcjc-89wr-vv7g

History

No history.

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-04-08T15:24:01.084Z

Updated: 2024-08-22T20:12:45.441Z

Reserved: 2024-03-29T14:16:31.902Z

Link: CVE-2024-31224

Vulnrichment

Updated: 2024-08-02T01:46:04.748Z

NVD

Status : Awaiting Analysis

Published: 2024-04-08T16:15:07.790

Modified: 2024-11-21T09:13:04.583

Link: CVE-2024-31224

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-31224", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-03-29T14:16:31.902Z", "datePublished": "2024-04-08T15:24:01.084Z", "dateUpdated": "2024-08-22T20:12:45.441Z"}, "containers": {"cna": {"title": "GPT Academic: Pickle deserializing cookies may pose RCE risk", "problemTypes": [{"descriptions": [{"cweId": "CWE-502", "lang": "en", "description": "CWE-502: Deserialization of Untrusted Data", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/binary-husky/gpt_academic/security/advisories/GHSA-jcjc-89wr-vv7g", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/binary-husky/gpt_academic/security/advisories/GHSA-jcjc-89wr-vv7g"}, {"name": "https://github.com/binary-husky/gpt_academic/pull/1648", "tags": ["x_refsource_MISC"], "url": "https://github.com/binary-husky/gpt_academic/pull/1648"}, {"name": "https://github.com/binary-husky/gpt_academic/commit/8af6c0cab6d96f5c4520bec85b24802e6e823f35", "tags": ["x_refsource_MISC"], "url": "https://github.com/binary-husky/gpt_academic/commit/8af6c0cab6d96f5c4520bec85b24802e6e823f35"}], "affected": [{"vendor": "binary-husky", "product": "gpt_academic", "versions": [{"version": ">= 3.64, < 3.74", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-04-08T15:24:01.084Z"}, "descriptions": [{"lang": "en", "value": "GPT Academic provides interactive interfaces for large language models. A vulnerability was found in gpt_academic versions 3.64 through 3.73. The server deserializes untrustworthy data from the client, which may risk remote code execution. Any device that exposes the GPT Academic service to the Internet is vulnerable. Version 3.74 contains a patch for the issue. There are no known workarounds aside from upgrading to a patched version."}], "source": {"advisory": "GHSA-jcjc-89wr-vv7g", "discovery": "UNKNOWN"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T01:46:04.748Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/binary-husky/gpt_academic/security/advisories/GHSA-jcjc-89wr-vv7g", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/binary-husky/gpt_academic/security/advisories/GHSA-jcjc-89wr-vv7g"}, {"name": "https://github.com/binary-husky/gpt_academic/pull/1648", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/binary-husky/gpt_academic/pull/1648"}, {"name": "https://github.com/binary-husky/gpt_academic/commit/8af6c0cab6d96f5c4520bec85b24802e6e823f35", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/binary-husky/gpt_academic/commit/8af6c0cab6d96f5c4520bec85b24802e6e823f35"}]}, {"affected": [{"vendor": "binary-husky", "product": "gpt_academic", "cpes": ["cpe:2.3:a:binary-husky:gpt_academic:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "3.74", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-04-09T15:55:23.348163Z", "id": "CVE-2024-31224", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-22T20:12:45.441Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://github.com/binary-husky/gpt_academic/security/advisories/GHSA-jcjc-89wr-vv7g", "name": "https://github.com/binary-husky/gpt_academic/security/advisories/GHSA-jcjc-89wr-vv7g", "tags": ["x_refsource_CONFIRM", "x_transferred"]}, {"url": "https://github.com/binary-husky/gpt_academic/pull/1648", "name": "https://github.com/binary-husky/gpt_academic/pull/1648", "tags": ["x_refsource_MISC", "x_transferred"]}, {"url": "https://github.com/binary-husky/gpt_academic/commit/8af6c0cab6d96f5c4520bec85b24802e6e823f35", "name": "https://github.com/binary-husky/gpt_academic/commit/8af6c0cab6d96f5c4520bec85b24802e6e823f35", "tags": ["x_refsource_MISC", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T01:46:04.748Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-31224", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-04-09T15:55:23.348163Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:binary-husky:gpt_academic:*:*:*:*:*:*:*:*"], "vendor": "binary-husky", "product": "gpt_academic", "versions": [{"status": "affected", "version": "0", "lessThan": "3.74", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-22T20:12:39.096Z"}}], "cna": {"title": "GPT Academic: Pickle deserializing cookies may pose RCE risk", "source": {"advisory": "GHSA-jcjc-89wr-vv7g", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "binary-husky", "product": "gpt_academic", "versions": [{"status": "affected", "version": ">= 3.64, < 3.74"}]}], "references": [{"url": "https://github.com/binary-husky/gpt_academic/security/advisories/GHSA-jcjc-89wr-vv7g", "name": "https://github.com/binary-husky/gpt_academic/security/advisories/GHSA-jcjc-89wr-vv7g", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/binary-husky/gpt_academic/pull/1648", "name": "https://github.com/binary-husky/gpt_academic/pull/1648", "tags": ["x_refsource_MISC"]}, {"url": "https://github.com/binary-husky/gpt_academic/commit/8af6c0cab6d96f5c4520bec85b24802e6e823f35", "name": "https://github.com/binary-husky/gpt_academic/commit/8af6c0cab6d96f5c4520bec85b24802e6e823f35", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "GPT Academic provides interactive interfaces for large language models. A vulnerability was found in gpt_academic versions 3.64 through 3.73. The server deserializes untrustworthy data from the client, which may risk remote code execution. Any device that exposes the GPT Academic service to the Internet is vulnerable. Version 3.74 contains a patch for the issue. There are no known workarounds aside from upgrading to a patched version."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-502", "description": "CWE-502: Deserialization of Untrusted Data"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-04-08T15:24:01.084Z"}}}, "cveMetadata": {"cveId": "CVE-2024-31224", "state": "PUBLISHED", "dateUpdated": "2024-08-22T20:12:45.441Z", "dateReserved": "2024-03-29T14:16:31.902Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2024-04-08T15:24:01.084Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{"descriptions": [{"lang": "en", "value": "GPT Academic provides interactive interfaces for large language models. A vulnerability was found in gpt_academic versions 3.64 through 3.73. The server deserializes untrustworthy data from the client, which may risk remote code execution. Any device that exposes the GPT Academic service to the Internet is vulnerable. Version 3.74 contains a patch for the issue. There are no known workarounds aside from upgrading to a patched version."}, {"lang": "es", "value": "GPT Academic proporciona interfaces interactivas para modelos de lenguaje grandes. Se encontr\u00f3 una vulnerabilidad en las versiones 3.64 a 3.73 de gpt_academic. El servidor deserializa datos no confiables del cliente, lo que puede poner en riesgo la ejecuci\u00f3n remota de c\u00f3digo. Cualquier dispositivo que exponga el servicio GPT Academic a Internet es vulnerable. La versi\u00f3n 3.74 contiene un parche para el problema. No se conocen workarounds aparte de actualizar a una versi\u00f3n parcheada."}], "id": "CVE-2024-31224", "lastModified": "2024-11-21T09:13:04.583", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2024-04-08T16:15:07.790", "references": [{"source": "security-advisories@github.com", "url": "https://github.com/binary-husky/gpt_academic/commit/8af6c0cab6d96f5c4520bec85b24802e6e823f35"}, {"source": "security-advisories@github.com", "url": "https://github.com/binary-husky/gpt_academic/pull/1648"}, {"source": "security-advisories@github.com", "url": "https://github.com/binary-husky/gpt_academic/security/advisories/GHSA-jcjc-89wr-vv7g"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/binary-husky/gpt_academic/commit/8af6c0cab6d96f5c4520bec85b24802e6e823f35"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/binary-husky/gpt_academic/pull/1648"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/binary-husky/gpt_academic/security/advisories/GHSA-jcjc-89wr-vv7g"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-502"}], "source": "security-advisories@github.com", "type": "Secondary"}]}