CVE-2025-66201

Опубликовано: 29 нояб. 2025

Источник: nvd

CVSS3: 8.1

EPSS Низкий

Описание

LibreChat is a ChatGPT clone with additional features. Prior to version 0.8.1-rc2, LibreChat is vulnerable to Server-side Request Forgery (SSRF), by passing specially crafted OpenAPI specs to its "Actions" feature and making the LLM use those actions. It could be used by an authenticated user with access to this feature to access URLs only accessible to the LibreChat server (such as cloud metadata services, through which impersonation of the server might be possible). This issue has been patched in version 0.8.1-rc2.

Ссылки

https://github.com/danny-avila/LibreChat/security/advisories/GHSA-7m2q-fjwr-5x8v
Exploit
Vendor Advisory
https://github.com/danny-avila/LibreChat/security/advisories/GHSA-7m2q-fjwr-5x8v
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:librechat:librechat:*:*:*:*:*:*:*:*

Версия до 0.8.1 (исключая)

cpe:2.3:a:librechat:librechat:0.8.1:-:*:*:*:*:*:*

cpe:2.3:a:librechat:librechat:0.8.1:rc1:*:*:*:*:*:*

EPSS

Процентиль: 21%

0.00068

Низкий

8.1 High

CVSS3

Дефекты

CWE-20

CWE-918