CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-31945

LibreChat is a ChatGPT clone with additional features. Versions 0.8.2-rc2 through 0.8.2 are vulnerable to a server-side request forgery (SSRF) attack when using agent actions or MCP. Although a previous SSRF vulnerability (https://github.com/danny-avila/LibreChat/security/advisories/GHSA-rgjq-4q58-m3q8) was reported and patched, the fix only introduced hostname validation. It does not verify whether DNS resolution results in a private IP address. As a result, an attacker can still bypass the protection and gain access to internal resources, such as an internal RAG API or cloud instance metadata endpoints. Version 0.8.3-rc1 contains a patch.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.9%

CVSS Severity

CVSS v3 Score 7.7

References

https://github.com/danny-avila/LibreChat/security/advisories/GHSA-f92m-jpv7-55p2
https://github.com/danny-avila/LibreChat/security/advisories/GHSA-f92m-jpv7-55p2

Products affected by CVE-2026-31945

Librechat » Librechat » Version: 0.8.2

cpe:2.3:a:librechat:librechat:0.8.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-31945

Products

Pricing

Contact Us