{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-05T23:29:59.243","vulnerabilities":[{"cve":{"id":"CVE-2024-11169","sourceIdentifier":"security@huntr.dev","published":"2025-03-20T10:15:24.210","lastModified":"2025-07-15T16:45:29.420","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"An unhandled exception in danny-avila/librechat version 3c94ff2 can lead to a server crash. The issue occurs when the fs module throws an exception while handling file uploads. An unauthenticated user can trigger this exception by sending a specially crafted request, causing the server to crash. The vulnerability is fixed in version 0.7.6."},{"lang":"es","value":"Una excepción no controlada en la versión 3c94ff2 de danny-avila/librechat puede provocar un fallo del servidor. El problema ocurre cuando el módulo fs lanza una excepción al gestionar la carga de archivos. Un usuario no autenticado puede activar esta excepción enviando una solicitud especialmente manipulada, lo que provoca el fallo del servidor. La vulnerabilidad está corregida en la versión 0.7.6."}],"metrics":{"cvssMetricV30":[{"source":"security@huntr.dev","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"security@huntr.dev","type":"Secondary","description":[{"lang":"en","value":"CWE-115"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:librechat:librechat:*:*:*:*:*:*:*:*","versionEndExcluding":"0.7.6","matchCriteriaId":"E179B3DF-58FF-4973-9462-0DACCC77DC7A"}]}]}],"references":[{"url":"https://github.com/danny-avila/librechat/commit/629be5c0ca2b332178524b4e3f6fac715aea8cc4","source":"security@huntr.dev","tags":["Patch"]},{"url":"https://huntr.com/bounties/754e1649-5612-4ba9-a533-06b46de5c4b5","source":"security@huntr.dev","tags":["Exploit","Third Party Advisory"]}]}}]}