Home

Description

A prompt injection vulnerability in the chatbox of Fusion Chat Chat AI Assistant Ask Me Anything v1.2.4.0 allows attackers to access and exfiltrate all previous and subsequent chat data between the user and the AI assistant via a crafted message.

PUBLISHED Reserved 2024-10-08 | Published 2024-10-24 | Updated 2024-10-28 | Assigner mitre

References

apps.microsoft.com/detail/9n3ff8j3d7zr?hl=en-US&gl=US

github.com/soursec/CVEs/tree/main/CVE-2024-48144

cve.org (CVE-2024-48144)

nvd.nist.gov (CVE-2024-48144)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.