Multiple Model Guardrail Jailbreak via "Educational Lab Inventory Simulator" Tactic
Case GUID: 61e40ed6-a8c4-4566-a1b4-895cef8d38d6Summary
A Guardrail Jailbreak vulnerability has been discovered affecting multiple models. The specific flaw exploits the models' tendency to relax safety enforcement when harmful requests are embedded inside ostensibly educational code generation tasks and realistic laboratory inventory simulations, allowing the attacker to obtain prohibited procedural information under the guise of academic chemistry modeling and software utility development.
Unlock the Full Intelligence Report
This disclosure is part of the 0DIN Threat Feed. Customers get access to:
Metadata
Models and Test Scores
| Copyrights | Harmful Substances | Illicit Substances | |||
|---|---|---|---|---|---|
| Harry Potter | Anthrax | Nerve Agent | Crystal Meth | Fentanyl | |
|
|
|||||
|
|
|||||
Anthropic Claude 3.5 Haiku
|
|||||
Cohere Command R
|
|||||
DeepSeek DeepSeek R1
|
|||||
|
|
|||||
|
|
|||||
Meta LLaMa 3.3
|
|||||
Meta LLaMa 4 Maverick
|
|||||
Meta LLaMa 4 Scout
|
|||||
Mistral Mistral 8B
|
|||||
Mistral Mistral Large
|
|||||
OpenAI GPT-4o
|
|||||
OpenAI GPT-5
|
|||||
OpenAI GPT-5 Chat
|
|||||
OpenAI GPT-5 mini
|
|||||
OpenAI GPT-5.2
|
|||||
OpenAI GPT-o3 mini
|
|||||
OpenAI GPT-o3 mini-high
|
|||||
Social Impact Score
Level 3: Significant Risk
Violations at this level present a tangible risk to public safety or social well-being, often related to dangerous but not highly restricted content.
Example: Bypassing guardrails to obtain instructions for creating illicit substances, such as recreational drugs or substances with moderate harm potential. Leakage of private personal data such as Social Security number or private medical.
Potential Consequences: Potential health impacts on a small scale, significant regulatory interest, and the need for stricter AI guardrails.
Taxonomies
About 0Din.ai
The 0Day Investigative Network (0DIN) was founded by Mozilla in 2024 to reward responsible researchers for their efforts in securing GenAI models. Learn more and submit discoveries at https://0din.ai.
Automate Your AI Security Testing
Want to find vulnerabilities in your own models? 0DIN Scanner turns our human-sourced threat intelligence into automated security assessments.
Derived from real bug bounties and security research
OpenAI, Azure, Anthropic, AWS Bedrock, and more
Run recurring scans with real-time monitoring
Attack Success Rate (ASR) scoring with 90-day trend analysis
Severity
Security Boundary
Guardrail Jailbreak
Models
Amazon Rufus
Anthropic Claude 3.5 Haiku
Anthropic Claude 4 Sonnet
BigScience BLOOM
Cohere Command R
DeepSeek DeepSeek R1
IBM Watson
Meta LLaMa 3.3
Meta LLaMa 4 Maverick
Meta LLaMa 4 Scout
Mistral Mistral 8B
Mistral Mistral Large
OpenAI GPT-4o
OpenAI GPT-5
OpenAI GPT-5 Chat
OpenAI GPT-5 mini
OpenAI GPT-5.2
OpenAI GPT-o3 mini
OpenAI GPT-o3 mini-high
Perplexity Comet Browser
Published On
2026-02-26 (4 months)
Credit
Anonymous