Back

CVE-2024-41703

July 22, 2024, 1 p.m.

Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.

Products

LibreChat

  • 0.7.4-rc1

Source

cve@mitre.org

Tags

cve@mitre.org
2024-07-22
CVE-2024-41703

CVE-2024-41703 details

Published : July 22, 2024, 5:15 a.m.
Last Modified : July 22, 2024, 1 p.m.

Description

LibreChat through 0.7.4-rc1 has incorrect access control for message updates. (Work on a fixed version release has started in PR 3363.)

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description

References

URL Source
https://github.com/danny-avila/LibreChat/discussions/3315#discussioncomment-10074284 cve@mitre.org
https://github.com/danny-avila/LibreChat/pull/3363 cve@mitre.org
This website uses the NVD API, but is not approved or certified by it.