Denial of Service Vulnerability in binary-husky/gpt_academic by Binary Husky
CVE-2024-10714

7.5HIGH

Key Information:

Vendor: Binary-husky
Status: Binary-husky/gpt Academic
Vendor: CVE Published:; 20 March 2025

🔔 Create Binary-husky Vulnerability Alert

What is CVE-2024-10714?

A vulnerability in binary-husky/gpt_academic version 3.83 can be exploited by attackers to trigger a Denial of Service (DoS) condition. This occurs during the file upload process when excessive characters are appended to the end of a multipart boundary. The server, in an effort to process the incoming data, gets overwhelmed by the numerous characters, leading it to issue repeated warnings, specifically the message: 'multipart.multipart Consuming a byte '0x2d' in end state'. As a result, the application may become completely inaccessible, disrupting normal operations.

Affected Version(s)

binary-husky/gpt_academic <= unspecified

References

https://huntr.com/bounties/3e25b76c-714f-4948-8f5a-0ec9a6...

CVSS V3.0

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 20, 2025
Vulnerability Reserved
Nov 1, 2024