CNNVD-202601-4183 Information

CNNVD ID

CNNVD-202601-4183

Related CVE

CVE-2026-0763

• CNNVD Published: 2026-01-23

Description (Chinese)

GPT Academic是binary-husky个人开发者的一个为 GPT/GLM 等 LLM 大语言模型提供实用化交互的接口。 GPT Academic存在代码问题漏洞，该漏洞源于run_in_subprocess_wrapper_func函数缺乏对用户提供数据的验证，可能导致反序列化不受信任数据和远程代码执行。

Description (English)

GPT Academic is a binary-husky personal developer that provides a practical interactive interface for LLM models such as GPT/GLM. GPT Academic has a code problem loophole, which stems from the lack of validation of data provided by users in the run in subproces wrapper func function, which may result in anti-serialization not trusted data and remote code execution.

Hazard Level

Low

Vulnerability Type

代码问题

Affected Vendor

个人开发者

Published

2026-01-23

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-26-029/