CVE-2024-10956
Published: 20 March 2025
Summary
CVE-2024-10956 is a high-severity Origin Validation Error (CWE-346) vulnerability in Binary-Husky Gpt Academic. Its CVSS base score is 7.1 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 23.9th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
This vulnerability is AI-related — categorised as Enterprise AI Assistants; in the Protocol-Specific Risks risk domain.
The strongest mitigations our analysis identified are NIST 800-53 AC-3 (Access Enforcement) and SC-23 (Session Authenticity).
Threat & Defense at a Glance
Threat & Defense Details
Mitigating Controls (NIST 800-53 r5)AI
Directly protects the authenticity of WebSocket communications sessions, mitigating CSWSH by requiring validation of origin and authentication to prevent hijacking.
Enforces approved authorizations for access to WebSocket resources, addressing insufficient WebSocket authentication to block unauthorized actions.
Validates information inputs such as Origin headers during WebSocket handshakes, directly countering the lack of origin validation exploited in this CVE.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
CVE-2024-10956 is a CSWSH vulnerability in a public-facing web application (GPT Academy), enabling attackers to exploit lack of WebSocket origin validation and authentication to hijack connections from victims' browsers and perform unauthorized actions like deleting data.
NVD Description
GPT Academy version 3.83 in the binary-husky/gpt_academic repository is vulnerable to Cross-Site WebSocket Hijacking (CSWSH). This vulnerability allows an attacker to hijack an existing WebSocket connection between the victim's browser and the server, enabling unauthorized actions such as deleting conversation…
more
history without the victim's consent. The issue arises due to insufficient WebSocket authentication and lack of origin validation.
Deeper analysisAI
CVE-2024-10956 is a Cross-Site WebSocket Hijacking (CSWSH) vulnerability affecting GPT Academy version 3.83 in the binary-husky/gpt_academic GitHub repository. The flaw stems from insufficient WebSocket authentication and lack of origin validation, enabling attackers to hijack existing WebSocket connections between a victim's browser and the server. It carries a CVSS v3.1 base score of 7.1 (AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N) and is associated with CWE-346 (Origin Validation Error).
An attacker can exploit this vulnerability without privileges by tricking a victim into visiting a malicious webpage via social engineering or other means requiring user interaction. Once the victim loads the attacker's page, it hijacks the active WebSocket connection to the GPT Academy server, allowing unauthorized actions such as deleting the victim's conversation history without consent. This results in high integrity impact with low confidentiality impact and no availability disruption.
Mitigation details and additional technical analysis are provided in the Huntr advisory at https://huntr.com/bounties/0f8403ad-5f60-4eb9-9f51-8fbd2e41eda4.
Details
- CWE(s)
Affected Products
AI Security AnalysisAI
- AI Category
- Enterprise AI Assistants
- Risk Domain
- Protocol-Specific Risks
- OWASP Top 10 for LLMs 2025
- None mapped
- Classification Reason
- GPT Academy is a web-based application in the binary-husky/gpt_academic repository, functioning as an AI assistant platform using GPT models, with the vulnerability in its WebSocket interface for managing conversation history.