{"uuid": "b5e4ac97-3459-4f95-bf9f-f9eba63b0e63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-32625", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116683232788673466", "content": "\ud83d\udd12 CVE-2026-32625 (CRITICAL): LibreChat < 0.8.4-rc1 lets any authenticated user exfiltrate secrets via crafted MCP server URLs. Upgrade ASAP to avoid full compromise of keys & DB creds. More: https://radar.offseq.com/threat/cve-2026-32625-cwe-200-exposure-of-sensitive-infor-b53af122 #OffSeq #Vulnerability #LibreChat #Infosec", "creation_timestamp": "2026-06-03T00:00:39.412298Z"}