Lucene search

@huntr_aiVULNRICHMENT:CVE-2024-5936

HistoryJun 27, 2024 - 6:45 p.m.

CVE-2024-5936 Open Redirect in imartinez/privategpt

2024-06-2718:45:31

CWE-601

@huntr_ai

github.com

open redirect

imartinez/privategpt

version 0.5.0

file parameter

user-controlled input

validation

sanitization

phishing attacks

malware distribution

credential theft

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

AI Score

Confidence

High

EPSS

0.001

Percentile

33.3%

SSVC

Exploitation

poc

Automatable

Technical Impact

partial

JSON

An open redirect vulnerability exists in imartinez/privategpt version 0.5.0 due to improper handling of the ‘file’ parameter. This vulnerability allows attackers to redirect users to a URL specified by user-controlled input without proper validation or sanitization. The impact of this vulnerability includes potential phishing attacks, malware distribution, and credential theft.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:imartinez:imartinez_privategpt:*:*:*:*:*:*:*:*"
    ],
    "vendor": "imartinez",
    "product": "imartinez_privategpt",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "versionType": "custom",
        "lessThanOrEqual": "0.5.0"
      }
    ],
    "defaultStatus": "unknown"
  }
]

References

huntr.com/bounties/43f05c1e-d7b8-45e2-b1fe-48faf1e3a48d

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

AI Score

Confidence

High

EPSS

0.001

Percentile

33.3%

SSVC

Exploitation

poc

Automatable

Technical Impact

partial

JSON

Related for VULNRICHMENT:CVE-2024-5936