{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-11T02:44:32.445","vulnerabilities":[{"cve":{"id":"CVE-2025-6088","sourceIdentifier":"security@huntr.dev","published":"2025-09-11T01:15:34.200","lastModified":"2025-10-16T16:00:19.400","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In version 0.7.8 of danny-avila/librechat, improper authorization controls in the conversation sharing feature allow unauthorized access to other users' conversations if the conversation ID is known. Although UUIDv4 conversation IDs are generated server-side and are difficult to brute force, they can be obtained from less-protected sources such as server-side access logs, browser history, or screenshots. The vulnerability permits a logged-in user to gain read-only access to another user's conversations by exploiting the `/api/share/conversationID` endpoint, which lacks authorization checks. This issue is resolved in version v0.7.9-rc1."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":3.1,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":1.4}],"cvssMetricV30":[{"source":"security@huntr.dev","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:L","baseScore":4.2,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":1.6,"impactScore":2.5}]},"weaknesses":[{"source":"security@huntr.dev","type":"Secondary","description":[{"lang":"en","value":"CWE-285"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:librechat:librechat:0.7.8:-:*:*:*:*:*:*","matchCriteriaId":"9320858D-D92D-4B8F-A7D2-01047C3D18FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:librechat:librechat:0.7.8:rc1:*:*:*:*:*:*","matchCriteriaId":"6175F0DD-C12D-45AB-9B26-1161E6B5C607"}]}]}],"references":[{"url":"https://github.com/danny-avila/librechat/commit/3af2666890bbf291cb7b9f3e03592d54714f0ff5","source":"security@huntr.dev","tags":["Patch"]},{"url":"https://huntr.com/bounties/361405bb-a739-41eb-a680-4cb6193e7c76","source":"security@huntr.dev","tags":["Exploit","Patch","Third Party Advisory"]}]}}]}