![\"\"](\"https:\/\/vertu-website-oss.vertu.com\/2025\/11\/GPT-4o-vs-GPT-5.png\")
<\/h2>\n<\/h2>\nIn a startling development, researchers at Tenable have revealed seven previously undisclosed vulnerabilities<\/strong> affecting the latest large language models from OpenAI\u2014GPT-4o and GPT-5. These flaws, uncovered and publicly reported by Cyber Security News, allow zero-click attacks<\/strong> that may enable malicious actors to exfiltrate user data, manipulate memory, and bypass built-in safety mechanisms.\u00a0 According to the report:<\/p>\n The vulnerabilities allow indirect prompt injection attacks: malicious instructions embedded in external content (web pages, memory prompts, browsing tools) get processed by the models without user interaction.<\/p>\n<\/li>\n Attackers can potentially access private user \u201cmemories\u201d and chat history stored by the model\u2019s memory tool.<\/p>\n<\/li>\n The exploits work with \u201czero-click\u201d workflows: users can simply run innocuous queries (e.g., \u201cgive me dinner ideas\u201d) and still trigger data leaks.<\/p>\n<\/li>\n These weaknesses stem from the architecture of memory tools, web-browsing modules, and system prompts that bind together user context and external data.<\/p>\n<\/li>\n Some of the vulnerabilities have already been patch-notified under advisories like TRA-2025-22, TRA-2025-11, TRA-2025-06.<\/p>\n<\/li>\n<\/ul>\n For everyday users of ChatGPT-style services:<\/p>\n If you store personal information (e.g., names, addresses, business details) in the model\u2019s memory tool, these vulnerabilities mean that attackers might extract that data without your active involvement.<\/p>\n<\/li>\n The \u201czero-click\u201d aspect lowers the barrier: you might be unaware your data is at risk, which undermines trust in AI assistants.<\/p>\n<\/li>\n For enterprises or professionals using AI tools for sensitive workflows, the risk is amplified: client data, trade secrets, and internal documents might be exposed.<\/p>\n<\/li>\n<\/ul>\n Users may become more cautious about what they ask AI models, what information they feed them, or whether they use \u201cmemory\u201d features at all.<\/p>\n<\/li>\n Some users or organisations may elect to refrain from using the newest models (e.g., GPT-5) until their safety profile is fully validated and audited.<\/p>\n<\/li>\n There is potential for reputational damage if a model used by a business gets compromised or used as a conduit for data exfiltration.<\/p>\n<\/li>\n<\/ul>\n Be judicious about enabling memory features, or storing highly sensitive information in AI assistants until you trust their security posture.<\/p>\n<\/li>\n Limit tool-use: if your workflow uses models with web-browsing, file-upload, or memory features, assume they carry heightened risk and apply additional oversight.<\/p>\n<\/li>\n Monitor for updates from your AI provider (OpenAI in this case) about patches and disclosures.<\/p>\n<\/li>\n For API integrators: apply user-level logging, restrict memory access, sandbox external data, and consider additional filtering or oversight.<\/p>\n<\/li>\n<\/ul>\n These disclosures signal that capability alone is insufficient<\/strong>: deploying large language models with advanced features (memory, browsing, tool use) introduces new attack surfaces.<\/p>\n<\/li>\n Vendors must treat safety, security and robustness<\/strong> as first-class requirements\u2014not just \u201cfeatures to add later.\u201d<\/p>\n<\/li>\n Enterprises integrating LLMs into mission-critical workflows will likely demand third-party audits<\/strong>, penetration tests<\/strong>, and formal red-teaming<\/strong> before adoption.<\/p>\n<\/li>\n<\/ul>\n Vendors that emphasise safer deployment and transparent vulnerability management may gain competitive advantage.<\/p>\n<\/li>\n Startups and open-source players will face additional scrutiny: if mainstream closed models show this type of vulnerability, the bar for safe usage of open models rises dramatically.<\/p>\n<\/li>\n Regulators may increasingly mandate security disclosures<\/strong>, vulnerability reporting<\/strong>, and responsible-deployment criteria<\/strong> for AI models with memory or capability to browse the web.<\/p>\n<\/li>\n<\/ul>\n Features like memory, tool integration and browsing are powerful enablers of advanced applications (professional assistants, business automation, multimodal workflows). But they also magnify risk vectors<\/strong>.<\/p>\n<\/li>\n The industry may see a bifurcation: \u201csafer mode\u201d LLMs with restricted functionality vs \u201cfeature-rich\u201d models used only in tightly controlled environments.<\/p>\n<\/li>\n Workflows in enterprises may shift to hybrid models: humans-in-the-loop, regular auditing of AI output, strict access controls on memory\/data retention.<\/p>\n<\/li>\n<\/ul>\n Patch efficacy & response<\/strong>: Will OpenAI (and other AI vendors) push updates, and how quickly will they close these classes of vulnerabilities?<\/p>\n<\/li>\n Independent audits<\/strong>: How many external security researchers will test these models, publish findings, and push for transparency?<\/p>\n<\/li>\n Regulatory action<\/strong>: Governments may contractually require vendors to report AI vulnerabilities and provide mitigation roadmaps\u2014especially for models used by public sector or critical infrastructure.<\/p>\n<\/li>\n Model versioning choices<\/strong>: Organisations may delay adoption of bleeding-edge models (e.g., GPT-5) and stick with more mature versions until safety is proven.<\/p>\n<\/li>\n User awareness & best practices<\/strong>: As this becomes more widely known, users may demand clear disclosures about AI model capabilities, feature risk, and how their data\/memory is handled.<\/p>\n<\/li>\n<\/ul>\n The discovery of seven major vulnerabilities in GPT-4o and GPT-5 highlights a pivotal moment in the evolution of generative AI. For individual users, it underscores the importance of caution when storing sensitive data with AI assistants. For industry, it serves as a wake-up call: model power must be matched by robust security, transparent testing, and responsible deployment. In a startling development, researchers at Tenable have revealed seven previously undisclosed vulnerabilities affecting the latest large language models from […]<\/p>","protected":false},"author":11214,"featured_media":121885,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"content-type":"","site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"default","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"set","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[468],"tags":[],"class_list":["post-121874","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-best-post"],"acf":[],"_links":{"self":[{"href":"https:\/\/legacy.vertu.com\/ar\/wp-json\/wp\/v2\/posts\/121874","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/legacy.vertu.com\/ar\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/legacy.vertu.com\/ar\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/legacy.vertu.com\/ar\/wp-json\/wp\/v2\/users\/11214"}],"replies":[{"embeddable":true,"href":"https:\/\/legacy.vertu.com\/ar\/wp-json\/wp\/v2\/comments?post=121874"}],"version-history":[{"count":0,"href":"https:\/\/legacy.vertu.com\/ar\/wp-json\/wp\/v2\/posts\/121874\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/legacy.vertu.com\/ar\/wp-json\/wp\/v2\/media\/121885"}],"wp:attachment":[{"href":"https:\/\/legacy.vertu.com\/ar\/wp-json\/wp\/v2\/media?parent=121874"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/legacy.vertu.com\/ar\/wp-json\/wp\/v2\/categories?post=121874"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/legacy.vertu.com\/ar\/wp-json\/wp\/v2\/tags?post=121874"}],"curies":[{"name":"\u0648\u0648\u0631\u062f\u0628\u0631\u064a\u0633","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
This article examines how these vulnerabilities affect individual users, enterprises, and the trajectory of frontier AI technologies.<\/p>\n
\nWhat Was Found: The Vulnerabilities at a Glance<\/h3>\n
\n
\nImpact on Users<\/h3>\n
Privacy & Data Leakage Risks<\/h4>\n
\n
Behavioural Impacts & Trust<\/h4>\n
\n
Mitigation Actions for Users<\/h4>\n
\n
\nImplications for the AI & Frontier Technology Landscape<\/h3>\n
Model Safety & Deployment Strategies<\/h4>\n
\n
Competitive & Ecosystem Effects<\/h4>\n
\n
Innovation vs. Risk Trade-off<\/h4>\n
\n
\nWhat to Watch Going Forward<\/h3>\n
\n
\n\u062e\u0627\u062a\u0645\u0629<\/h3>\n
As generative AI continues to advance into more modalities and tasks, the trade-off between innovation and safety will grow sharper. Models that remember, browse, and act as agents offer tremendous upside\u2014but they also offer attackers new pathways. The future of frontier AI will depend not just on how smart the models become, but how secure, trustworthy, and resilient<\/strong> they are.<\/p>","protected":false},"excerpt":{"rendered":"