CVE-2024-29100

CVSS 3.1 Score 9.1 of 10 (high)

Details

Published Mar 28, 2024

CWE ID 434

Summary

CVE-2024-29100 is a newly disclosed vulnerability affecting the Jordy Meow AI Engine: ChatGPT Chatbot. The issue involves an Unrestricted File Upload vulnerability, where an attacker can upload a file of dangerous type without restriction. This can lead to arbitrary code execution or data leakage, posing a significant security risk. The affected version range is from n/a to 2.1.4. It is crucial for users to update their chatbot software to a patched version as soon as possible to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vEJRj0
https://www.cve.org/CVERecord?id=CVE-2024-29100
https://nvd.nist.gov/vuln/detail/CVE-2024-29100

Back to Vulnerability Database

CVE-2024-29100

CVSS 3.1 Score 9.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations