CVE-2024-55241

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Feb 6, 2025

Updated: Feb 11, 2025

CWE ID 94

Summary

CVE-2024-55241 is a newly discovered vulnerability affecting the deep-diver LLM-As-Chatbot software. This issue resides in the modelsbyom.py component and permits remote attackers to execute arbitrary code. By exploiting this flaw, an adversary can potentially gain unauthorized access and control over the vulnerable system. This vulnerability poses a significant risk as it can lead to serious data breaches or system compromises. It is recommended that users update to the latest version of deep-diver LLM-As-Chatbot as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/1TyTqP
https://www.cve.org/CVERecord?id=CVE-2024-55241
https://nvd.nist.gov/vuln/detail/CVE-2024-55241

Back to Vulnerability Database

CVE-2024-55241

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations