Vulnerability Details CVE-2024-9159
An incorrect authorization vulnerability exists in gaizhenbiao/chuanhuchatgpt version git c91dbfc. The vulnerability allows any user to restart the server at will, leading to a complete loss of availability. The issue arises because the function responsible for restarting the server is not properly guarded by an admin check.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 24.1%
CVSS Severity
CVSS v3 Score 6.5
Products affected by CVE-2024-9159
-
cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:2024-12-04