CVE-2024-8143 Information

Description

In the latest version (20240628) of gaizhenbiao/chuanhuchatgpt an issue exists in the /file endpoint that allows authenticated users to access the chat history of other users. When a user logs in a directory is created in the history folder with the user’s name. By manipulating the /file endpoint an authenticated user can enumerate and access files in other users’ directories leading to unauthorized access to private chat histories. This vulnerability can be exploited to read any user’s private chat history.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Reference

https://huntr.com/bounties/71c5ea4b-524a-4173-8fd4-2fbabd69502e https://github.com/gaizhenbiao/chuanhuchatgpt/commit/ccc7479ace5c9e1a1d9f4daf2e794ffd3865fc2b

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

LOW

Availability Impact

NONE

Base Score

NONE

Base Severity

4.3