Information disclosure in LibreChat - CVE-2026-32625
Published: June 3, 2026
Vulnerability identifier: #VU133258
CSH Severity: Medium
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2026-32625
CWE-ID: CWE-200
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: LibreChat
Affected software:
LibreChat
LibreChat
Detailed vulnerability description
The vulnerability allows a remote user to disclose sensitive information and compromise integrity.
The vulnerability exists due to exposure of sensitive information to an unauthorized actor in the MCP server URL validation and inspection workflow when handling authenticated MCP server creation requests with crafted URL placeholders. A remote user can submit a malicious MCP server configuration that injects environment variable references into the URL to disclose sensitive information and compromise integrity.
The server immediately connects to the resolved external URL during inspection, which can expose secrets such as cryptographic keys, token signing material, and database connection strings.
How to mitigate CVE-2026-32625
Install security update from vendor's website.