CVE-2026-31949

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2026-31949

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-31949.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2026-31949

Aliases

GHSA-5m32-chq6-232p

Published

2026-03-13T19:47:24.653Z

Modified

2026-04-10T05:42:12.812072Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

LibreChat Denial of Service (DoS) via Unhandled Exception in DELETE /api/convos

Details

LibreChat is a ChatGPT clone with additional features. Prior to 0.8.3-rc1, a Denial of Service (DoS) vulnerability exists in the DELETE /api/convos endpoint that allows an authenticated attacker to crash the Node.js server process by sending malformed requests. The DELETE /api/convos route handler attempts to destructure req.body.arg without validating that it exists. The server crashes due to an unhandled TypeError that bypasses Express error handling middleware and triggers process.exit(1). This vulnerability is fixed in 0.8.3-rc1.

Database specific

{
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-248"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/31xxx/CVE-2026-31949.json"
}

References

Affected packages

Git / github.com/danny-avila/librechat

Affected ranges

Type: GIT
Repo: https://github.com/danny-avila/librechat
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

9eeec6bc4f5e856ac65f50784254d484b2808622

Affected versions

chart-1.*

chart-1.9.0

chart-1.9.1

chart-1.9.2

chart-1.9.3

chart-1.9.4

chart-1.9.5

chart-1.9.6

chart-1.9.7

librechat-1.*

librechat-1.8.9

v0.*

v0.0.1

v0.0.2

v0.0.3

v0.0.6

v0.1.0

v0.1.1

v0.2.0

v0.3.0

v0.3.3

v0.4.0

v0.4.1

v0.4.2

v0.4.3

v0.4.4

v0.4.5

v0.4.6

v0.4.7

v0.4.8

v0.5.0

v0.5.1

v0.5.2

v0.5.3

v0.5.4

v0.5.5

v0.5.6

v0.5.7

v0.5.8

v0.5.9

v0.6.0

v0.6.1

v0.6.10

v0.6.5

v0.6.6

v0.6.9

v0.7.0

v0.7.1

v0.7.2

v0.7.3

v0.7.3-rc

v0.7.3-rc2

v0.7.4

v0.7.4-rc1

v0.7.5

v0.7.5-rc1

v0.7.5-rc2

v0.7.6

v0.7.6-rc1

v0.7.7

v0.7.7-rc1

v0.7.8

v0.7.8-rc1

v0.7.9

v0.7.9-rc1

v0.8.0

v0.8.0-rc1

v0.8.0-rc2

v0.8.0-rc3

v0.8.0-rc4

v0.8.1

v0.8.1-rc1

v0.8.1-rc2

v0.8.2

v0.8.2-rc1

v0.8.2-rc2

v0.8.2-rc3

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-31949.json"