Critical severity9.1NVD Advisory· Published Oct 24, 2024· Updated Apr 15, 2026

CVE-2024-48144

Description

A prompt injection vulnerability in the chatbox of Fusion Chat Chat AI Assistant Ask Me Anything v1.2.4.0 allows attackers to access and exfiltrate all previous and subsequent chat data between the user and the AI assistant via a crafted message.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

apps.microsoft.com/detail/9n3ff8j3d7zrnvd
github.com/soursec/CVEs/tree/main/CVE-2024-48144nvd

News mentions

No linked articles in our index yet.

cvss	0.591
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000