{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-0762", "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "state": "PUBLISHED", "assignerShortName": "zdi", "dateReserved": "2026-01-08T22:49:51.276Z", "datePublished": "2026-01-23T03:28:19.689Z", "dateUpdated": "2026-01-23T19:23:27.751Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "shortName": "zdi", "dateUpdated": "2026-01-23T03:28:19.689Z"}, "title": "GPT Academic stream_daas Deserialization of Untrusted Data Remote Code Execution Vulnerability", "descriptions": [{"lang": "en", "value": "GPT Academic stream_daas Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GPT Academic. Interaction with a malicious DAAS server is required to exploit this vulnerability but attack vectors may vary depending on the implementation.\n\nThe specific flaw exists within the stream_daas function. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-27956."}], "affected": [{"vendor": "GPT Academic", "product": "GPT Academic", "versions": [{"version": "3.91", "status": "affected"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-502", "description": "CWE-502: Deserialization of Untrusted Data", "type": "CWE"}]}], "references": [{"url": "https://www.zerodayinitiative.com/advisories/ZDI-26-028/", "name": "ZDI-26-028", "tags": ["x_research-advisory"]}], "dateAssigned": "2026-01-08T22:49:51.301Z", "datePublic": "2026-01-09T16:35:18.890Z", "source": {"lang": "en", "value": "Peter Girnus (@gothburz) and Brandon Niemczyk of Trend Zero Day Initiative"}, "metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 8.1, "baseSeverity": "HIGH"}}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-01-23T19:23:16.088195Z", "id": "CVE-2026-0762", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-23T19:23:27.751Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-0762", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-01-23T19:23:16.088195Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-23T19:23:23.173Z"}}], "cna": {"title": "GPT Academic stream_daas Deserialization of Untrusted Data Remote Code Execution Vulnerability", "source": {"lang": "en", "value": "Peter Girnus (@gothburz) and Brandon Niemczyk of Trend Zero Day Initiative"}, "metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "baseScore": 8.1, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}}], "affected": [{"vendor": "GPT Academic", "product": "GPT Academic", "versions": [{"status": "affected", "version": "3.91"}], "defaultStatus": "unknown"}], "datePublic": "2026-01-09T16:35:18.890Z", "references": [{"url": "https://www.zerodayinitiative.com/advisories/ZDI-26-028/", "name": "ZDI-26-028", "tags": ["x_research-advisory"]}], "dateAssigned": "2026-01-08T22:49:51.301Z", "descriptions": [{"lang": "en", "value": "GPT Academic stream_daas Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GPT Academic. Interaction with a malicious DAAS server is required to exploit this vulnerability but attack vectors may vary depending on the implementation.\n\nThe specific flaw exists within the stream_daas function. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-27956."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-502", "description": "CWE-502: Deserialization of Untrusted Data"}]}], "providerMetadata": {"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "shortName": "zdi", "dateUpdated": "2026-01-23T03:28:19.689Z"}}}, "cveMetadata": {"cveId": "CVE-2026-0762", "state": "PUBLISHED", "dateUpdated": "2026-01-23T19:23:27.751Z", "dateReserved": "2026-01-08T22:49:51.276Z", "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "datePublished": "2026-01-23T03:28:19.689Z", "assignerShortName": "zdi"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:binary-husky:gpt_academic:3.91:*:*:*:*:*:*:*", "matchCriteriaId": "E6552037-FD85-48BB-A474-C85A10783308", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "GPT Academic stream_daas Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GPT Academic. Interaction with a malicious DAAS server is required to exploit this vulnerability but attack vectors may vary depending on the implementation.\n\nThe specific flaw exists within the stream_daas function. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-27956."}], "id": "CVE-2026-0762", "lastModified": "2026-02-18T16:41:56.887", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 2.2, "impactScore": 5.9, "source": "zdi-disclosures@trendmicro.com", "type": "Secondary"}]}, "published": "2026-01-23T04:16:02.973", "references": [{"source": "zdi-disclosures@trendmicro.com", "tags": ["Mitigation", "Third Party Advisory"], "url": "https://www.zerodayinitiative.com/advisories/ZDI-26-028/"}], "sourceIdentifier": "zdi-disclosures@trendmicro.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-502"}], "source": "zdi-disclosures@trendmicro.com", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-18T03:18:41.529238+00:00", "value": {"mitigation_remediation": ["Apply the vendor\u2011supplied patch or upgrade GPT Academic to a version that fixes the stream_daas deserialization flaw as soon as it becomes available.", "If a patch is not yet released, block or restrict outbound communication to unknown or untrusted DAAS servers, allowing only traffic to verified, trusted endpoints.", "If the stream_daas feature is unnecessary, disable or remove it from the configuration; alternatively, implement strict input validation to whitelist acceptable data structures before deserialization."], "summary": {"action": "Patch Now", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "GPT Academic version\u202f3.91 is affected, as identified by the CPE string cpe:2.3:a:binary-husky:gpt_academic:3.91. No other versions or editions are listed in the CVE data, so any installation running that release is vulnerable.", "description_and_impact": "The vulnerability comes from the stream_daas function in GPT Academic that fails to validate data before deserialization, allowing a malicious payload to be processed. An attacker who can communicate with or control a DAAS server that the GPT Academic instance contacts can send crafted data, causing the application to execute arbitrary code with the privileges of the service, potentially reaching root level. This flaw is classified as CWE\u2011502 \u2013 Deserialization of Untrusted Data, giving the attacker the ability to compromise confidentiality, integrity, and availability of the affected host.", "risk_and_exploitability": "The CVSS score of 8.1 indicates moderate\u2011to\u2011high severity, while the EPSS score of less than\u202f1\u202fpercent signals a low likelihood of widespread exploitation at present. The vulnerability is not present in CISA\u2019s Known Exploited Vulnerabilities catalog. Exploitation requires a remote attacker to interact with a malicious or compromised DAAS server that the GPT Academic instance contacts. Once such communication is established, the attacker can trigger deserialization of untrusted data, enabling code execution as root. The attack vector is remote, contingent on network access to the GPT Academic host or the DAAS server."}}}}, "created": "2026-01-23T10:26:47.900612+00:00", "updated": "2026-04-18T03:30:25.905131+00:00", "vendors": ["gpt_academic_project", "gpt_academic_project$PRODUCT$gpt_academic"]}