CVE-2024-10956

GPT Academy version 3.83 in the binary-husky/gpt_academic repository is vulnerable to Cross-Site WebSocket Hijacking (CSWSH). This vulnerability allows an attacker to hijack an existing WebSocket connection between the victim's browser and the server, enabling unauthorized actions such as deleting conversation history without the victim's consent. The issue arises due to insufficient WebSocket authentication and lack of origin validation.

CVSS v3 7.1 HIGH

7.1^/10

CVSS v3 : HIGH

Vector :

Exploitability : 2.8 / Impact : 4.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://huntr.com/bounties/0f8403ad-5f60-4eb9-9f51-8fbd2e41eda4	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:binary-husky:gpt_academic:3.83:*:*:*:*:*:*:*

History

15 Jul 2025, 11:15

Type	Values Removed	Values Added
References	~~() https://huntr.com/bounties/0f8403ad-5f60-4eb9-9f51-8fbd2e41eda4 -~~	() https://huntr.com/bounties/0f8403ad-5f60-4eb9-9f51-8fbd2e41eda4 - Exploit, Third Party Advisory
CWE	~~CWE-284~~	CWE-346
First Time		Binary-husky gpt Academic Binary-husky
CPE		cpe:2.3:a:binary-husky:gpt_academic:3.83:::::::*
CVSS	v2 : ~~unknown~~ v3 : ~~7.6~~	v2 : unknown v3 : 7.1
Summary		(es) La versión 3.83 de GPT Academy, disponible en el repositorio binary-husky/gpt_academic, es vulnerable a Cross-Site WebSocket Hijacking (CSWSH). Esta vulnerabilidad permite a un atacante secuestrar una conexión WebSocket existente entre el navegador de la víctima y el servidor, lo que permite acciones no autorizadas, como borrar el historial de conversaciones sin su consentimiento. El problema surge debido a una autenticación WebSocket insuficiente y a la falta de validación del origen.

20 Mar 2025, 10:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-03-20 10:15

Updated : 2025-07-15 11:15

NVD link : CVE-2024-10956

Mitre link : CVE-2024-10956

CVE.ORG link : CVE-2024-10956

JSON object : View

Products Affected

binary-husky

gpt_academic

CWE

CWE-346

Origin Validation Error

{"id": "CVE-2024-10956", "cveTags": [], "metrics": {"cvssMetricV30": [{"type": "Secondary", "source": "security@huntr.dev", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 7.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 4.7, "exploitabilityScore": 2.8}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 4.2, "exploitabilityScore": 2.8}]}, "published": "2025-03-20T10:15:22.470", "references": [{"url": "https://huntr.com/bounties/0f8403ad-5f60-4eb9-9f51-8fbd2e41eda4", "tags": ["Exploit", "Third Party Advisory"], "source": "security@huntr.dev"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "security@huntr.dev", "description": [{"lang": "en", "value": "CWE-346"}]}, {"type": "Secondary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-346"}]}], "descriptions": [{"lang": "en", "value": "GPT Academy version 3.83 in the binary-husky/gpt_academic repository is vulnerable to Cross-Site WebSocket Hijacking (CSWSH). This vulnerability allows an attacker to hijack an existing WebSocket connection between the victim's browser and the server, enabling unauthorized actions such as deleting conversation history without the victim's consent. The issue arises due to insufficient WebSocket authentication and lack of origin validation."}, {"lang": "es", "value": "La versi\u00f3n 3.83 de GPT Academy, disponible en el repositorio binary-husky/gpt_academic, es vulnerable a Cross-Site WebSocket Hijacking (CSWSH). Esta vulnerabilidad permite a un atacante secuestrar una conexi\u00f3n WebSocket existente entre el navegador de la v\u00edctima y el servidor, lo que permite acciones no autorizadas, como borrar el historial de conversaciones sin su consentimiento. El problema surge debido a una autenticaci\u00f3n WebSocket insuficiente y a la falta de validaci\u00f3n del origen."}], "lastModified": "2025-07-15T11:15:23.830", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:binary-husky:gpt_academic:3.83:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "63F16447-B71B-4EAC-9ABD-EA8B4D131601"}], "operator": "OR"}]}], "sourceIdentifier": "security@huntr.dev"}