CVE-2024-11033

A Denial of Service DoS vulnerability exists in the file upload feature of binary-husky/gptacademic version 3.83. The vulnerability is due to improper handling of form-data with a large filename in the file upload request. An attacker can exploit this vulnerability by sending a payload with an...

CVE-2024-10912

A Denial of Service DoS vulnerability exists in the file upload feature of lm-sys/fastchat version 0.2.36. The vulnerability is due to improper handling of form-data with a large filename in the file upload request. An attacker can exploit this by sending a payload with an excessively large...

CVE-2024-12070

CVE-2024-12070 concerns a DoS vulnerability in the file upload feature of haotian-liu/llava (Release v1.2.0 / LLaVA-1.6). The root cause is improper handling of form-data with an excessively large filename in the file upload request, which can overwhelm the server and render it unresponsive. Expl...

CVE-2024-12074

CVE-2024-12074 describes a DoS in automatic1111/stable-diffusion-webui 1.10.0 caused by improper handling of form-data with a very large filename in file uploads. The vulnerability, exploitable without authentication, can render the server unresponsive and unavailable to legitimate users, indicat...

CVE-2024-10912 Denial of Service in lm-sys/fastchat

A Denial of Service DoS vulnerability exists in the file upload feature of lm-sys/fastchat version 0.2.36. The vulnerability is due to improper handling of form-data with a large filename in the file upload request. An attacker can exploit this by sending a payload with an excessively large...