CVE-2024-10100 – A path traversal vulnerability in binary-husky/... (How to Fix)

📋 TL;DR

A path traversal vulnerability in binary-husky/gpt_academic version 3.83 allows attackers to read arbitrary files on the host system by manipulating the file parameter with URL encoding. This affects all deployments running the vulnerable version, potentially exposing sensitive data like SSH keys, API keys, and configuration files.

💻 Affected Systems

Products:

binary-husky/gpt_academic

Versions: Version 3.83

Operating Systems: All

Default Config Vulnerable: ⚠️ Yes

Notes: Any deployment using the vulnerable version is affected regardless of configuration.

📦 What is this software?

Gpt Academic by Binary Husky

View all CVEs affecting Gpt Academic →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise through theft of SSH keys, API credentials, and sensitive configuration data, potentially leading to lateral movement and data exfiltration.

🟠

Likely Case

Exposure of sensitive application files, configuration values, and credentials stored on the same server as the vulnerable application.

🟢

If Mitigated

Limited impact if proper file system permissions restrict application user access and sensitive files are stored elsewhere.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

The vulnerability requires no authentication and exploitation is straightforward via URL manipulation.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Version 3.84 or later

Vendor Advisory: https://huntr.com/bounties/e58a0fb4-2b1d-49ef-b32e-bb62659a6f99

Restart Required: Yes

Instructions:

1. Update to version 3.84 or later via pip: pip install --upgrade gpt_academic
2. Restart the application service
3. Verify the fix by checking the version

🔧 Temporary Workarounds

File Access Restriction

linux

Restrict application user file system permissions to limit accessible directories

chmod 750 /path/to/application
chown -R appuser:appgroup /path/to/application

Web Server Configuration

all

Configure web server to block path traversal attempts in URLs

🧯 If You Can't Patch

Implement strict network access controls to limit who can reach the vulnerable application
Move all sensitive files (SSH keys, API keys, configs) to directories inaccessible to the application user

🔍 How to Verify

Check if Vulnerable:

Check if running version 3.83: python -c "import gpt_academic; print(gpt_academic.__version__)"

Check Version:

python -c "import gpt_academic; print(gpt_academic.__version__)"

Verify Fix Applied:

Verify version is 3.84 or higher using the same command

📡 Detection & Monitoring

Log Indicators:

Unusual file access patterns in application logs
Requests with encoded path traversal sequences (../, %2e%2e%2f)

Network Indicators:

HTTP requests with URL-encoded path traversal sequences in file parameter

SIEM Query:

source="web_server" AND (uri="*%2e%2e%2f*" OR uri="*..%2f*")

📊 Metadata

CVE ID: CVE-2024-10100

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE: CWE-22

Published: October 17, 2024

Last Updated: July 11, 2025

🔗 References

https://huntr.com/bounties/e58a0fb4-2b1d-49ef-b32e-bb62659a6f99 Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-10100, you might also want to check these: