漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
LibreChat: SSRF via User-Provided Custom Endpoint baseURL — no private IP validation on user-configured API base URLs
Vulnerability Description
LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, LibreChat allows users to configure custom OpenAI-compatible API endpoints by setting a baseURL. This URL is used to construct HTTP requests without any SSRF validation — no private IP check, no scheme restriction, no DNS pinning. An authenticated user can set baseURL to internal network addresses. This vulnerability is fixed in 0.8.4-rc1.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Vulnerability Type
服务端请求伪造(SSRF)
Vulnerability Title
Danny Avila LibreChat 服务端请求伪造漏洞
Vulnerability Description
danny-avila LibreChat是danny-avila个人开发者的 Danny Avila LibreChat 0.8.4-rc1之前版本存在服务端请求伪造漏洞,该漏洞源于在配置自定义OpenAI兼容API端点时未进行SSRF验证,如私有IP检查、方案限制或DNS固定,允许经过身份验证的用户将baseURL设置为内部网络地址。
CVSS Information
N/A
Vulnerability Type
N/A