Security Advisory

CVE-2024-9159

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-20 10:10:13

Last updated 2025-03-20 18:24:27

Assigner @huntr_ai

State PUBLISHED

Description

An incorrect authorization vulnerability exists in gaizhenbiao/chuanhuchatgpt version git c91dbfc. The vulnerability allows any user to restart the server at will, leading to a complete loss of availability. The issue arises because the function responsible for restarting the server is not properly guarded by an admin check.

← Browse all CVEs View on cve.org ↗