CVE-2026-31944 in LibreChatinformação

Sumário

de MITRE • 13/03/2026

LibreChat is a ChatGPT clone with additional features. From 0.8.2 to 0.8.2-rc3, The MCP (Model Context Protocol) OAuth callback endpoint accepts the redirect from the identity provider and stores OAuth tokens for the user who initiated the flow, without verifying that the browser hitting the redirect URL is logged in or that the logged-in user matches the initiator. An attacker can send the authorization URL to a victim; when the victim completes the flow, the victim’s OAuth tokens are stored on the attacker’s LibreChat account, enabling account takeover of the victim’s MCP-linked services (e.g. Atlassian, Outlook). This vulnerability is fixed in 0.8.3-rc1.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

GitHub M

Reservar

10/03/2026

Divulgação

13/03/2026

Moderação

aceite

Entrada

VDB-351037

CPE

pronto

CWE

CWE-306 (confirmado)

CVSS

7.6 (CNA)

EPSS

0.00040

KEV

não

Atividades

muito baixo

Sector

Chemical, Lawfirm, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-31944
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-31944
CVE Details	https://www.cvedetails.com/cve/CVE-2026-31944/

◂ Voltar Visão Geral Próximo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!