Lucene search
+L

464 matches found

OSV
OSV
added 2026/06/02 10:47 p.m.3 views

CVE-2026-44654 LibreChat: Shared-agent editor can globally delete owner's file records — breaks owner's other private agents

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.8.3, a shared-agent editor can delete file records through DELETE /api/files that the owner has reused across multiple agents. The deletion removes the file globally — not just from the...

7.2CVSS5.9AI score0.00265EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/06/02 10:40 p.m.47 views

CVE-2026-44653 LibreChat Shared MCP Server View Leaks Decrypted Admin Secrets

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.8.3, users with only VIEW access to an MCP server can retrieve the server's decrypted admin-managed secrets through GET /api/mcp/servers and GET /api/mcp/servers/:serverName. The returned...

6.5CVSS0.00276EPSS
Exploits1References1
EUVD
EUVD
added 2026/06/02 10:40 p.m.12 views

EUVD-2026-34047

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.8.3, users with only VIEW access to an MCP server can retrieve the server's decrypted admin-managed secrets through GET /api/mcp/servers and GET /api/mcp/servers/:serverName. The returned...

6.5CVSS5.7AI score0.00276EPSS
Exploits1References1
OSV
OSV
added 2026/06/02 10:40 p.m.5 views

CVE-2026-44653 LibreChat Shared MCP Server View Leaks Decrypted Admin Secrets

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.8.3, users with only VIEW access to an MCP server can retrieve the server's decrypted admin-managed secrets through GET /api/mcp/servers and GET /api/mcp/servers/:serverName. The returned...

6.5CVSS5.9AI score0.00276EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/06/02 10:35 p.m.10 views

CVE-2026-32625

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.8.3, the Model Context Protocol MCP server integration resolves $VAR placeholders against the server's process.env during Zod schema validation of user-supplied MCP server URLs. Any...

9.6CVSS5.8AI score0.0294EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/06/02 10:35 p.m.54 views

CVE-2026-32625

LibreChat vulnerability CVE-2026-32625 affects versions up to 0.8.3 where MCP server URL validation expands ${VAR} against process.env during Zod schema checks. An authenticated user can configure a malicious MCP URL to exfiltrate secrets (CREDS_KEY, CREDS_IV, JWT_SECRET, MONGO_URI) to an attacke...

9.6CVSS5.8AI score0.0294EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/02 10:35 p.m.12 views

CVE-2026-32625 LibreChat Exfiltrates Server Secrets via MCP Server URL Injection

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.8.3, the Model Context Protocol MCP server integration resolves $VAR placeholders against the server's process.env during Zod schema validation of user-supplied MCP server URLs. Any...

9.6CVSS5.8AI score0.0294EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/06/02 10:22 p.m.37 views

CVE-2026-31942 LibreChat has IDOR in API Keys Management that allows any authenticated user to overwrite other users' API keys

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.7.6, an Insecure Direct Object Reference IDOR vulnerability exists in the API keys management endpoint PUT /api/keys. Due to the use of the JavaScript object spread operator after setting...

7.1CVSS0.00206EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/02 10:22 p.m.14 views

CVE-2026-31942 LibreChat has IDOR in API Keys Management that allows any authenticated user to overwrite other users' API keys

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.7.6, an Insecure Direct Object Reference IDOR vulnerability exists in the API keys management endpoint PUT /api/keys. Due to the use of the JavaScript object spread operator after setting...

7.1CVSS5.7AI score0.00206EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/02 10:22 p.m.15 views

CVE-2026-31942

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.7.6, an Insecure Direct Object Reference IDOR vulnerability exists in the API keys management endpoint PUT /api/keys. Due to the use of the JavaScript object spread operator after setting...

7.1CVSS5.7AI score0.00206EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/02 10:22 p.m.31 views

CVE-2026-31942

LibreChat (up to version 0.7.6) is affected by an Insecure Direct Object Reference (IDOR) in the API keys management endpoint (PUT /api/keys). After setting the authenticated user’s ID, an attacker can inject a userId parameter in the request body to overwrite other users’ API keys (e.g., OpenAI,...

7.1CVSS5.8AI score0.00206EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/06/02 10:22 p.m.3 views

CVE-2026-31942 LibreChat has IDOR in API Keys Management that allows any authenticated user to overwrite other users' API keys

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.7.6, an Insecure Direct Object Reference IDOR vulnerability exists in the API keys management endpoint PUT /api/keys. Due to the use of the JavaScript object spread operator after setting...

7.1CVSS5.9AI score0.00206EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.11 views

LibreChat 安全漏洞

LibreChat is an open-source, free, and highly customizable unified AI dialogue platform. It allows for the aggregation and running of large models from any vendor within one interface. LibreChat versions 0.8.3 and earlier have a security vulnerability caused by a file deletion permission issue...

8.1CVSS5.4AI score0.00265EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.9 views

LibreChat 安全漏洞

LibreChat is an open-source, free, and highly customizable unified AI dialogue platform. It allows for the aggregation and running of large models from any vendor within one interface. LibreChat versions 0.8.3 and earlier have a security vulnerability caused by improper access control to the MCP...

6.5CVSS5.4AI score0.00276EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

LibreChat 安全漏洞

LibreChat is an open-source, free, and highly customizable unified AI dialogue platform. It allows for the aggregation and running of large models from any vendor within a single interface. LibreChat versions 0.7.6 and earlier contain security vulnerabilities. These vulnerabilities stem from...

7.1CVSS5.4AI score0.00206EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.8 views

LibreChat 信息泄露漏洞

LibreChat is an open-source, free, and highly customizable unified AI dialogue platform. It allows for the aggregation and running of large models from any vendor within a single interface. Versions of LibreChat 0.8.3 and earlier contained a security vulnerability known as information leakage. Th...

9.6CVSS5.4AI score0.0294EPSS
Exploits1References1
Chainguard
Chainguard
added 2026/05/19 1:17 a.m.15 views

GHSA-GHCM-XQFW-Q4VR vulnerabilities

Vulnerabilities for packages: librechat, langfuse-fips, langfuse...

5.3AI score
Exploits0
Chainguard
Chainguard
added 2026/05/19 1:17 a.m.13 views

CVE-2026-41149 vulnerabilities

Vulnerabilities for packages: librechat, langfuse-fips, langfuse...

5.3CVSS5.1AI score0.00401EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/18 7:18 p.m.15 views

CVE-2026-41148 vulnerabilities

Vulnerabilities for packages: librechat, langfuse-fips, langfuse...

5.3CVSS5.1AI score0.00338EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/18 7:18 p.m.17 views

CVE-2026-41150 vulnerabilities

Vulnerabilities for packages: librechat, langfuse-fips, langfuse...

5.3CVSS5.1AI score0.00384EPSS
Exploits0
Rows per page
Query Builder