High severity7.5NVD Advisory· Published Mar 20, 2025· Updated Jun 17, 2026
CVE-2024-8018
CVE-2024-8018
Description
A vulnerability in imartinez/privategpt version 0.5.0 allows for a Denial of Service (DOS) attack. When uploading a file, if an attacker appends a large number of characters to the end of a multipart boundary, the system will continuously process these characters, rendering privateGPT inaccessible. This uncontrolled resource consumption can lead to prolonged unavailability of the service, disrupting operations and causing potential data inaccessibility and loss of productivity.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =0.5.0
- imartinez/imartinez/privategptv5Range: unspecified
Patches
Vulnerability mechanics
References
1- huntr.com/bounties/0661fa3b-bea4-4156-abed-a65d51958505nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.