CVE-2025-41258 | danny-avila LibreChat 0.8.1-rc2 JWT Secret access control

Inserito da Angelo Barbosa | Mar 18, 2026 | CVE

A vulnerability was found in danny-avila LibreChat 0.8.1-rc2. It has been declared as critical. Impacted is an unknown function of the component JWT Secret Handler. Executing a manipulation can lead to improper access controls.

This vulnerability is tracked as CVE-2025-41258. The attack is only possible within the local network. No exploit exists.

CVE-2025-41258 | danny-avila LibreChat 0.8.1-rc2 JWT Secret access control

Post correlati

CVE-2024-34404 | Veritas NetBackup/NetBackup Appliance Alta Recovery Vault access control

CVE-2024-7889 | Citrix Workspace App prior 2402 LTSR CU1/CR 2405 on Windows Local Privilege Escalation (CTX691485)

CVE-2026-3411 | itsourcecode University Management System 1.0 admin_single_student_update.php ID sql injection

CVE-2024-33149 | J2EEFAST 2.7.0 myProcessList sql_filter sql injection