Findings

Replay vulnerability

Updated: June 19, 2025

findings action based findings ai finding

Description

The model is vulnerable to the replay attack.

Remediation

Investigate and improve the effectiveness of guardrails and other output security mechanisms.

Security Frameworks

OWASP AI 2025

LLM02:2025 Sensitive Information Disclosure

Sensitive information can affect both the LLM and its application context. This includes personal identifiable information (PII), financial details, health records, confidential business data, security credentials, and legal documents. Proprietary models may also have unique training methods and source code considered sensitive, especially in closed or foundation models.

MITRE ATLAS

AML.T0057: LLM Data Leakage

Adversaries may craft prompts that induce the LLM to leak sensitive information. This can include private user data or proprietary information. The leaked information may come from proprietary training data, data sources the LLM is connected to, or information from other users of the LLM.

Need help?

Contact FireTail support

Previous (Findings - Action based findings)
Repeat-reply vulnerability
Next (Findings - Action based findings)
Response time limit exceeded