CVE-2024-6255

CVSS v3 8.2 HIGH

8.2^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 4.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact HIGH

Scope UNCHANGED

A

vulnerability in the JSON file handling of gaizhenbiao/chuanhuchatgpt version 20240410 allows any user to delete any JSON file on the server, including critical configuration files such as `config.json` and `ds_config_chatbot.json`. This issue arises due to improper validation of file paths, enabling directory traversal attacks. An attacker can exploit this vulnerability to disrupt the functioning of the system, manipulate settings, or potentially cause data loss or corruption.

References

Link	Resource
https://huntr.com/bounties/48f3e370-6dcd-4f38-9350-d0419b3a7f82	Exploit Issue Tracking Technical Description
https://huntr.com/bounties/48f3e370-6dcd-4f38-9350-d0419b3a7f82	Exploit Issue Tracking Technical Description

Configurations

Configuration 1 (hide)

cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20240410:*:*:*:*:*:*:*

History

21 Nov 2024, 09:49

Type	Values Removed	Values Added
References	~~() https://huntr.com/bounties/48f3e370-6dcd-4f38-9350-d0419b3a7f82 - Exploit, Issue Tracking, Technical Description~~	() https://huntr.com/bounties/48f3e370-6dcd-4f38-9350-d0419b3a7f82 - Exploit, Issue Tracking, Technical Description
CVSS	v2 : ~~unknown~~ v3 : ~~9.1~~	v2 : unknown v3 : 8.2

30 Aug 2024, 16:15

Type	Values Removed	Values Added
CWE	~~CWE-73~~

27 Aug 2024, 13:30

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~8.2~~	v2 : unknown v3 : 9.1
CPE		cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20240410:::::::*
CWE		CWE-22
First Time		Gaizhenbiao chuanhuchatgpt Gaizhenbiao
References	~~() https://huntr.com/bounties/48f3e370-6dcd-4f38-9350-d0419b3a7f82 -~~	() https://huntr.com/bounties/48f3e370-6dcd-4f38-9350-d0419b3a7f82 - Exploit, Issue Tracking, Technical Description

31 Jul 2024, 12:57

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-07-31 01:15

Updated : 2024-11-21 09:49

NVD link : CVE-2024-6255

Mitre link : CVE-2024-6255

CVE.ORG link : CVE-2024-6255

JSON object : View

Products Affected

gaizhenbiao

chuanhuchatgpt

CWE

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

{"id": "CVE-2024-6255", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 4.2, "exploitabilityScore": 3.9}, {"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.1, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 5.2, "exploitabilityScore": 3.9}]}, "published": "2024-07-31T01:15:09.847", "references": [{"url": "https://huntr.com/bounties/48f3e370-6dcd-4f38-9350-d0419b3a7f82", "tags": ["Exploit", "Issue Tracking", "Technical Description"], "source": "[email protected]"}, {"url": "https://huntr.com/bounties/48f3e370-6dcd-4f38-9350-d0419b3a7f82", "tags": ["Exploit", "Issue Tracking", "Technical Description"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-22"}]}, {"type": "Secondary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the JSON file handling of gaizhenbiao/chuanhuchatgpt version 20240410 allows any user to delete any JSON file on the server, including critical configuration files such as `config.json` and `ds_config_chatbot.json`. This issue arises due to improper validation of file paths, enabling directory traversal attacks. An attacker can exploit this vulnerability to disrupt the functioning of the system, manipulate settings, or potentially cause data loss or corruption."}, {"lang": "es", "value": " Una vulnerabilidad en el manejo de archivos JSON de gaizhenbiao/chuanhuchatgpt versi\u00f3n 20240410 permite a cualquier usuario eliminar cualquier archivo JSON en el servidor, incluidos archivos de configuraci\u00f3n cr\u00edticos como `config.json` y `ds_config_chatbot.json`. Este problema surge debido a una validaci\u00f3n inadecuada de las rutas de los archivos, lo que permite ataques de cruce de directorios. Un atacante puede aprovechar esta vulnerabilidad para interrumpir el funcionamiento del sistema, manipular la configuraci\u00f3n o provocar potencialmente la p\u00e9rdida o corrupci\u00f3n de datos."}], "lastModified": "2024-11-21T09:49:17.200", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:gaizhenbiao:chuanhuchatgpt:20240410:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8897AB54-62A0-416D-9A95-BC1F9C705F78"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}