PT-2024-10343 · Librechat · Librechat

Published

2024-10-28

Updated

2025-03-21

CVE-2024-11172

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions LibreChat (affected versions not specified)

Description The issue is related to an uncontrolled resource consumption in the checkBan.js script of the LibreChat platform, which is based on artificial intelligence. This could allow a remote attacker to cause a denial of service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-248

Related Identifiers

BDU:2025-00834

CVE-2024-11172

Affected Products

Librechat

PT-2024-10343 · Librechat · Librechat

CVE-2024-11172

Weakness Enumeration

Related Identifiers

Affected Products

References · 6