OpenAI · GPT-4o System Card (PDF)

Cybersecurity Uplift Risk Assessment

Medium severity
Share 𝕏 Share in Share

Why it matters

GPT-4o's ability to assist with code generation, vulnerability analysis, and technical problem-solving means it has inherent dual-use cybersecurity potential that OpenAI acknowledges but has decided is adequately mitigated through refusals and classifiers.

Consumer impact

GPT-4o's system card discloses that the model's expressive audio capabilities create risks of emotional dependency, sycophantic reinforcement of user beliefs, and potential manipulation — risks OpenAI acknowledges but has not fully resolved at launch. Users interacting with voice mode may receive outputs calibrated to sound emotionally resonant, which can subtly influence decision-making and foster over-reliance on the AI. You can reduce these risks by using text mode instead of voice mode and by independently verifying any important advice or information GPT-4o provides.

Applicable agencies

  • FTC
    FTC Act Section 5 applies to OpenAI's representations about the adequacy of cybersecurity uplift mitigations in consumer and enterprise products
    File a complaint →

Provision details

Document information
Document
GPT-4o System Card (PDF)
Entity
OpenAI
Document last updated
March 5, 2026
Tracking information
First tracked
March 10, 2026
Last verified
March 31, 2026
Record ID
CA-P-000070
Document ID
CA-D-00008
Evidence Provenance
Source URL
https://openai.com/index/gpt-4o-system-card
Wayback Machine
View archived versions →
SHA-256
7c23ef53467eea199596abe78511d57ffee1e94b50ef10ac0f7d81df278b5059
Verified
✓ Snapshot stored   ✓ Change verified
How to Cite
ConductAtlas Policy Archive
Entity: OpenAI | Document: GPT-4o System Card (PDF) | Record: CA-P-000070
Captured: 2026-03-10 03:40:55 UTC | SHA-256: 7c23ef53467eea19…
URL: https://conductatlas.com/platform/openai/gpt-4o-system-card-pdf/cybersecurity-uplift-risk-assessment/
Accessed: April 4, 2026
Classification
Severity
Medium
Categories
Ai automated

Other provisions in this document