Description

The system identified the application is using a known LLM (Large Language Model) model.

Remediation

Review the LLM integration and its configuration. Ensure proper security controls are in place to prevent potential exploitation through subsequent vulnerabilities.

References

OWASP Top 10 for Large Language Model Applications

Related Vulnerabilities

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-16738)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1829)

PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2101)

Nginx Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-2263)

WordPress 3.3.2 Multiple Vulnerabilities (3.3 - 3.3.2)

Severity

Info

Classification

CWE-200 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N

Tags

Llm Llm Sensitive Information Disclosure