CVE-2024-41703 Information

Description

LibreChat through 0.7.4-rc1 has incorrect access control for message updates. (Work on a fixed version release has started in PR 3363.)

Reference

https://github.com/danny-avila/LibreChat/pull/3363 https://github.com/danny-avila/LibreChat/discussions/3315#discussioncomment-10074284