CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1 matches found

RedhatCVE•added 2025/09/25 3:49 p.m.•3 views

CVE-2025-7106

danny-avila/librechat is affected by an authorization bypass vulnerability due to improper access control checks. The checkAccess function in api/server/middleware/roles/access.js uses permissions.some to validate permissions, which incorrectly grants access if only one of multiple required...

5.3CVSS5.5AI score0.00036EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by