Description
GPT Academic stream_daas Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GPT Academic. Interaction with a malicious DAAS server is required to exploit this vulnerability but attack vectors may vary depending on the implementation.

The specific flaw exists within the stream_daas function. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-27956.
Published: 2026-01-23
Score: 8.1 High
EPSS: < 1% Very Low
KEV: No
Impact: Remote Code Execution
Action: Patch Now
AI Analysis

Impact

The vulnerability comes from the stream_daas function in GPT Academic that fails to validate data before deserialization, allowing a malicious payload to be processed. An attacker who can communicate with or control a DAAS server that the GPT Academic instance contacts can send crafted data, causing the application to execute arbitrary code with the privileges of the service, potentially reaching root level. This flaw is classified as CWE‑502 – Deserialization of Untrusted Data, giving the attacker the ability to compromise confidentiality, integrity, and availability of the affected host.

Affected Systems

GPT Academic version 3.91 is affected, as identified by the CPE string cpe:2.3:a:binary-husky:gpt_academic:3.91. No other versions or editions are listed in the CVE data, so any installation running that release is vulnerable.

Risk and Exploitability

The CVSS score of 8.1 indicates moderate‑to‑high severity, while the EPSS score of less than 1 percent signals a low likelihood of widespread exploitation at present. The vulnerability is not present in CISA’s Known Exploited Vulnerabilities catalog. Exploitation requires a remote attacker to interact with a malicious or compromised DAAS server that the GPT Academic instance contacts. Once such communication is established, the attacker can trigger deserialization of untrusted data, enabling code execution as root. The attack vector is remote, contingent on network access to the GPT Academic host or the DAAS server.

Generated by OpenCVE AI on April 18, 2026 at 03:18 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the vendor‑supplied patch or upgrade GPT Academic to a version that fixes the stream_daas deserialization flaw as soon as it becomes available.
  • If a patch is not yet released, block or restrict outbound communication to unknown or untrusted DAAS servers, allowing only traffic to verified, trusted endpoints.
  • If the stream_daas feature is unnecessary, disable or remove it from the configuration; alternatively, implement strict input validation to whitelist acceptable data structures before deserialization.

Generated by OpenCVE AI on April 18, 2026 at 03:18 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 18 Feb 2026 16:45:00 +0000

Type Values Removed Values Added
First Time appeared Binary-husky
Binary-husky gpt Academic
CPEs cpe:2.3:a:binary-husky:gpt_academic:3.91:*:*:*:*:*:*:*
Vendors & Products Binary-husky
Binary-husky gpt Academic

Fri, 23 Jan 2026 20:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 23 Jan 2026 16:45:00 +0000

Type Values Removed Values Added
First Time appeared Gpt Academic Project
Gpt Academic Project gpt Academic
Vendors & Products Gpt Academic Project
Gpt Academic Project gpt Academic

Fri, 23 Jan 2026 04:00:00 +0000

Type Values Removed Values Added
Description GPT Academic stream_daas Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GPT Academic. Interaction with a malicious DAAS server is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the stream_daas function. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-27956.
Title GPT Academic stream_daas Deserialization of Untrusted Data Remote Code Execution Vulnerability
Weaknesses CWE-502
References
Metrics cvssV3_0

{'score': 8.1, 'vector': 'CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Binary-husky Gpt Academic
Gpt Academic Project Gpt Academic
cve-icon MITRE

Status: PUBLISHED

Assigner: zdi

Published:

Updated: 2026-01-23T19:23:27.751Z

Reserved: 2026-01-08T22:49:51.276Z

Link: CVE-2026-0762

cve-icon Vulnrichment

Updated: 2026-01-23T19:23:23.173Z

cve-icon NVD

Status : Analyzed

Published: 2026-01-23T04:16:02.973

Modified: 2026-02-18T16:41:56.887

Link: CVE-2026-0762

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-18T03:30:25Z

Weaknesses