Lucene search

@huntr_aiVULNRICHMENT:CVE-2024-6255

HistoryJul 31, 2024 - 12:00 a.m.

CVE-2024-6255 Path Traversal in gaizhenbiao/chuanhuchatgpt

2024-07-3100:00:15

CWE-22

@huntr_ai

github.com

vulnerability

json file handling

directory traversal

configuration files

data loss

CVSS3

8.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

AI Score

8.9

Confidence

High

EPSS

0.001

Percentile

18.4%

SSVC

Exploitation

poc

Automatable

yes

Technical Impact

partial

JSON

A vulnerability in the JSON file handling of gaizhenbiao/chuanhuchatgpt version 20240410 allows any user to delete any JSON file on the server, including critical configuration files such as config.json and ds_config_chatbot.json. This issue arises due to improper validation of file paths, enabling directory traversal attacks. An attacker can exploit this vulnerability to disrupt the functioning of the system, manipulate settings, or potentially cause data loss or corruption.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20240410:*:*:*:*:*:*:*"
    ],
    "vendor": "gaizhenbiao",
    "product": "chuanhuchatgpt",
    "versions": [
      {
        "status": "affected",
        "version": "20240410"
      }
    ],
    "defaultStatus": "unknown"
  }
]

References

huntr.com/bounties/48f3e370-6dcd-4f38-9350-d0419b3a7f82

CVSS3

8.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

AI Score

8.9

Confidence

High

EPSS

0.001

Percentile

18.4%

SSVC

Exploitation

poc

Automatable

yes

Technical Impact

partial

JSON

Related for VULNRICHMENT:CVE-2024-6255