CVE-2026-33265

Publication date

2026-03-18 11:17:45

Family

mitre

State

PUBLISHED

Description

In LibreChat 0.8.1-rc2, a logged-in user obtains a JWT for both the LibreChat API and the RAG API.