CVE-2024-11031
Published: 20 March 2025
Description
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Security Summary
CVE-2024-11031 is a Server-Side Request Forgery (SSRF) vulnerability, classified as CWE-918, affecting version 3.83 of binary-husky/gpt_academic. The flaw exists in the Markdown_Translate.get_files_from_everything() API and is exploited through the HotReload(Markdown翻译中) plugin function, which performs insufficient validation by only checking if provided links start with 'http'. This allows the plugin to download content from arbitrary web hosts via the affected GPT Academic Gradio Web server.
Attackers require only network access with no authentication or user interaction, as indicated by the CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N). Exploitation occurs when victims use the plugin with a malicious link, enabling attackers to leverage the Gradio Web server's credentials to access unauthorized web resources and potentially exfiltrate sensitive data.
Mitigation details are available in the Huntr advisory at https://huntr.com/bounties/d27d89a7-7d54-45b9-a9eb-66c00bc56e02.
Details
- CWE(s)
Affected Products
AI Security Analysis
- AI Category
- Other Platforms
- Risk Domain
- N/A
- OWASP Top 10 for LLMs 2025
- None mapped
- MITRE ATLAS Techniques
- None mapped
- Classification Reason
- Regex match
MITRE ATT&CK Enterprise Techniques
Why these techniques?
The SSRF vulnerability in the public-facing Gradio Web server (via the Markdown_Translate plugin) directly enables remote exploitation of the application without authentication, allowing arbitrary outbound requests to unauthorized web resources for data access/exfiltration.