CVE-2026-31950

Name of the Vulnerable Software and Affected Versions LibreChat versions 0.8.2-rc2 through 0.8.2-rc3

Description LibreChat, a ChatGPT clone, has an issue where the SSE streaming endpoint /api/agents/chat/stream/:streamId does not confirm that the user making the request is authorized to access the stream. This allows any authenticated user who has a valid stream ID—whether obtained legitimately or through guessing—to view another user’s real-time chat content, including messages, AI responses, and tool invocations. The streamId variable is a key component in this issue.

Recommendations Versions prior to 0.8.2 should be updated to version 0.8.2 or later.