Vulnerabilities > CVE-2024-41703 - Unspecified vulnerability in Librechat
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
LibreChat through 0.7.4-rc1 has incorrect access control for message updates.
Vulnerable Configurations
References
- https://github.com/danny-avila/LibreChat/discussions/3315#discussioncomment-10074284
- https://github.com/danny-avila/LibreChat/discussions/3315#discussioncomment-10074284
- https://github.com/danny-avila/LibreChat/pull/3363
- https://github.com/danny-avila/LibreChat/pull/3363
- https://github.com/realestate-com-au/vulnerability-disclosures/blob/main/LibreChat/CVE-2024-41703.md