Login Sign Up

CVE-2024-5823

9.1 CRITICAL
Denial of Service

📋 TL;DR

This vulnerability allows attackers to overwrite critical configuration files in gaizhenbiao/chuanhuchatgpt, potentially altering system behavior, security settings, or causing denial of service. Users running versions up to 20240410 are affected. The high CVSS score of 9.1 indicates significant risk.

💻 Affected Systems

Products:
  • gaizhenbiao/chuanhuchatgpt
Versions: <= 20240410
Operating Systems: All platforms running vulnerable software
Default Config Vulnerable: ⚠️ Yes
Notes: Any deployment using affected versions is vulnerable regardless of configuration.

📦 What is this software?

Chuanhuchatgpt by Gaizhenbiao

View all CVEs affecting Chuanhuchatgpt →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise through configuration tampering leading to unauthorized code execution, data theft, or persistent backdoor installation.

🟠

Likely Case

Unauthorized configuration changes causing service disruption, security policy bypass, or data integrity issues.

🟢

If Mitigated

Limited impact with proper file permissions, monitoring, and network segmentation preventing exploitation.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

File overwrite vulnerabilities typically have low exploitation complexity, though specific exploit details aren't publicly documented.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Fixed in commit 720c23d755a4a955dcb0a54e8c200a2247a27f8b

Vendor Advisory: https://github.com/gaizhenbiao/chuanhuchatgpt/commit/720c23d755a4a955dcb0a54e8c200a2247a27f8b

Restart Required: Yes

Instructions:

1. Update to latest version after commit 720c23d755a4a955dcb0a54e8c200a2247a27f8b. 2. Restart the application. 3. Verify configuration files haven't been tampered with.

🔧 Temporary Workarounds

Restrict file permissions

linux

Set strict read-only permissions on configuration files to prevent overwrites.

chmod 444 /path/to/config/files/*

Network isolation

all

Restrict network access to the application to trusted sources only.

🧯 If You Can't Patch

  • Implement strict file system monitoring for configuration file changes.
  • Deploy application in isolated container or VM with minimal privileges.

🔍 How to Verify

Check if Vulnerable:

Check if running version <= 20240410 by examining version metadata or commit history.

Check Version:

Check application documentation or source code for version information.

Verify Fix Applied:

Confirm installation includes commit 720c23d755a4a955dcb0a54e8c200a2247a27f8b or later.

📡 Detection & Monitoring

Log Indicators:

  • Unexpected file modification events in configuration directories
  • Failed file permission errors
  • Application restart logs without authorized changes

Network Indicators:

  • Unusual network connections to configuration management ports
  • Unexpected file transfer patterns

SIEM Query:

file_modification AND (path:"*/config/*" OR path:"*.conf" OR path:"*.ini") AND NOT user:authorized_user

📊 Metadata

CVE ID: CVE-2024-5823
CVSS v3 Score: 9.1 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
CWE: CWE-73
Published: October 29, 2024
Last Updated: October 31, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-5823, you might also want to check these:

CVE-2026-27211 10.0

Cloud Hypervisor versions 34.0 through 50.0 are vulnerable to host file exfiltration when using virt...

Same vulnerability type (CWE-73)
CVE-2024-55371 9.8

Wallos versions up to 2.38.2 contain a file upload vulnerability in the restore backup function that...

Same vulnerability type (CWE-73)
CVE-2025-29708 9.8

SourceCodester Company Website CMS 1.0 contains an unauthenticated file upload vulnerability in the ...

Same vulnerability type (CWE-73)