Security Advisory

CVE-2024-10908

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-20 10:09:58

Last updated 2025-03-20 18:32:18

Assigner @huntr_ai

State PUBLISHED

Description

An open redirect vulnerability in lm-sys/fastchat Release v0.2.36 allows a remote unauthenticated attacker to redirect users to arbitrary websites via a specially crafted URL. This can be exploited for phishing attacks, malware distribution, and credential theft.

← Browse all CVEs View on cve.org ↗