CVE-2024-5823

CVSS V2 None CVSS V3 None

Description

A file overwrite vulnerability exists in gaizhenbiao/chuanhuchatgpt versions <= 20240410. This vulnerability allows an attacker to gain unauthorized access to overwrite critical configuration files within the system. Exploiting this vulnerability can lead to unauthorized changes in system behavior or security settings. Additionally, tampering with these configuration files can result in a denial of service (DoS) condition, disrupting normal system operation.

Overview

CVE ID
CVE-2024-5823

Assigner
@huntr_ai

Vulnerability Status
PUBLISHED

Published Version
2024-10-29T12:48:49.071Z

Last Modified Date
2024-10-29T13:27:21.197Z

Weakness Enumerations

CWE	URL
CWE-73	http://cwe.mitre.org/data/definitions/73.html

References

Reference URL	Reference Tags
https://huntr.com/bounties/ca361701-7d68-4df6-8da0-caad4b85b9ae
https://github.com/gaizhenbiao/chuanhuchatgpt/commit/720c23d755a4a955dcb0a54e8c200a2247a27f8b

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2024-5823
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5823

History

Created	Old Value	New Value	Data Type	Notes
2024-10-30 13:31:21				Added to TrackCVE