CVE-2024-11033

Summary

CVE-2024-11033 is a Denial of Service (DoS) vulnerability affecting version 3.83 of binary-husky/gpt_academic. This issue arises due to the application's mishandling of form-data with overly large filenames in file upload requests. An attacker can exploit this vulnerability by sending a specially crafted payload with an excessively long filename, leading the server to become overloaded and inaccessible to legitimate users. This can result in service disruption, impacting system availability and potentially causing inconvenience or downtime for users. It is strongly recommended that affected systems be updated as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.