apk package

chainguard/librechat

pkg:apk/chainguard/librechat

Vulnerabilities (112)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2026-41650	Med	6.1	< 0.8.4-r6	0.8.4-r6	May 7, 2026	fast-xml-parser allows users to process XML from JS object without C/C++ based libraries or callbacks. Prior to version 5.7.0, XMLBuilder does not escape the "-->" sequence in comment content or the "]]>" sequence in CDATA sections when building XML from JavaScript objects. This
CVE-2026-41675	Hig	—	< 0.8.4-r6	0.8.4-r6	May 7, 2026	xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer` module. In @xmldom/xmldom prior to versions 0.9.10 and 0.8.13 and xmldom version 0.6.0 and prior, the package allows attacker-controlled processing instruction data to be seriali
CVE-2026-41674	Hig	—	< 0.8.4-r6	0.8.4-r6	May 7, 2026	xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer` module. In @xmldom/xmldom prior to versions 0.9.10 and 0.8.13 and xmldom version 0.6.0 and prior, the package serializes DocumentType node fields (internalSubset, publicId, syste
CVE-2026-41673	Hig	—	< 0.8.4-r6	0.8.4-r6	May 7, 2026	xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer` module. In @xmldom/xmldom prior to versions 0.9.10 and 0.8.13 and xmldom version 0.6.0 and prior, seven recursive traversals in lib/dom.js operate without a depth limit. A suffic
CVE-2026-41672	Hig	—	< 0.8.4-r6	0.8.4-r6	May 7, 2026	xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer` module. In @xmldom/xmldom prior to versions 0.9.10 and 0.8.13 and xmldom version 0.6.0 and prior, the package allows attacker-controlled comment content to be serialized into XML
CVE-2026-41907	Hig	7.5	< 0.8.4-r6	0.8.4-r6	Apr 24, 2026	uuid is for the creation of RFC9562 (formerly RFC4122) UUIDs. Prior to 14.0.0, v3, v5, and v6 accept external output buffers but do not reject out-of-range writes (small buf or large offset). This allows silent partial writes into caller-provided buffers. This vulnerability is fi
CVE-2026-42044	Med	6.5	< 0.8.4-r6	0.8.4-r6	Apr 24, 2026	Axios is a promise based HTTP client for the browser and Node.js. From 1.0.0 to before 1.15.2, he Axios library is vulnerable to a Prototype Pollution "Gadget" attack that allows any Object.prototype pollution in the application's dependency tree to be escalated into surgical, in
CVE-2026-40897	Hig	8.8	< 0.8.4-r5	0.8.4-r5	Apr 24, 2026	Math.js is an extensive math library for JavaScript and Node.js. From 13.1.1 to before 15.2.0, a vulnerability allowed executing arbitrary JavaScript via the expression parser of mathjs. You can be affected when you have an application where users can evaluate arbitrary expressio
CVE-2026-41182	Med	5.3	< 0.8.4-r5	0.8.4-r5	Apr 23, 2026	LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to version 0.5.19 of the JavaScript SDK and version 0.7.31 of the Python SDK, the LangSmith SDK's output redaction controls (hideOutputs in JS, hide_outputs in Python) do not apply to streaming
CVE-2026-41242	Cri	9.8	< 0.8.4-r5	0.8.4-r5	Apr 18, 2026	protobufjs compiles protobuf definitions into JavaScript (JS) functions. In versions prior to 8.0.1 and 7.5.5, attackers can inject arbitrary code in the "type" fields of protobuf definitions, which will then execute during object decoding using that definition. Versions 8.0.1 an
CVE-2026-40190	Med	5.6	< 0.8.4-r5	0.8.4-r5	Apr 10, 2026	LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to 0.5.18, the LangSmith JavaScript/TypeScript SDK (langsmith) contains an incomplete prototype pollution fix in its internally vendored lodash set() utility. The baseAssignValue() function onl
CVE-2026-40175	Med	4.8	< 0.8.4-r5	0.8.4-r5	Apr 10, 2026	Axios is a promise based HTTP client for the browser and Node.js. Versions prior to 1.15.0 and 0.3.1 are vulnerable to a specific gadget-style attack chain in which prototype pollution in a third-party dependency may be leveraged to inject unsanitized header values into outbound
CVE-2025-62718	Cri	9.9	< 0.8.4-r5	0.8.4-r5	Apr 9, 2026	Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.0 and 0.31.0, Axios does not correctly handle hostname normalization when checking NO_PROXY rules. Requests to loopback addresses like localhost. (with a trailing dot) or [::1] (IPv6 literal) skip NO_
CVE-2026-39410	Med	4.8	< 0.8.4-r5	0.8.4-r5	Apr 8, 2026	Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.12, a discrepancy between browser cookie parsing and parse() handling allows cookie prefix protections to be bypassed. Cookie names that are treated as distinct by the browser may
CVE-2026-39409	Med	5.3	< 0.8.4-r5	0.8.4-r5	Apr 8, 2026	Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.12, ipRestriction() does not canonicalize IPv4-mapped IPv6 client addresses (e.g. ::ffff:127.0.0.1) before applying IPv4 allow or deny rules. In environments such as Node.js dual-s
CVE-2026-39408	Hig	7.5	< 0.8.4-r5	0.8.4-r5	Apr 8, 2026	Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.12, a path traversal issue in toSSG() allows files to be written outside the configured output directory during static site generation. When using dynamic route parameters via ssgP
CVE-2026-39407	Med	5.3	< 0.8.4-r5	0.8.4-r5	Apr 8, 2026	Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.12, a path handling inconsistency in serveStatic allows protected static files to be accessed by using repeated slashes (//) in the request path. When route-based middleware (e.g.,
CVE-2026-39406	Med	5.3	< 0.8.4-r5	0.8.4-r5	Apr 8, 2026	@hono/node-server allows running the Hono application on Node.js. Prior to 1.19.13, a path handling inconsistency in serveStatic allows protected static files to be accessed by using repeated slashes (//) in the request path. When route-based middleware (e.g., /admin/*) is used f
CVE-2026-4800	Hig	8.1	< 0.8.4-r5	0.8.4-r5	Mar 31, 2026	Impact: The fix for CVE-2021-23337 (https://github.com/advisories/GHSA-35jh-r3h4-6jhm) added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. When an a
CVE-2026-2950	Med	6.5	< 0.8.4-r5	0.8.4-r5	Mar 31, 2026	Impact: Lodash versions 4.17.23 and earlier are vulnerable to prototype pollution in the _.unset and _.omit functions. The fix for (CVE-2025-13465: https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg) only guards against string key members, so an attacker ca

CVE-2026-41650MedMay 7, 2026
affected < 0.8.4-r6fixed 0.8.4-r6
fast-xml-parser allows users to process XML from JS object without C/C++ based libraries or callbacks. Prior to version 5.7.0, XMLBuilder does not escape the "-->" sequence in comment content or the "]]>" sequence in CDATA sections when building XML from JavaScript objects. This
CVE-2026-41675HigMay 7, 2026
affected < 0.8.4-r6fixed 0.8.4-r6
xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer` module. In @xmldom/xmldom prior to versions 0.9.10 and 0.8.13 and xmldom version 0.6.0 and prior, the package allows attacker-controlled processing instruction data to be seriali
CVE-2026-41674HigMay 7, 2026
affected < 0.8.4-r6fixed 0.8.4-r6
xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer` module. In @xmldom/xmldom prior to versions 0.9.10 and 0.8.13 and xmldom version 0.6.0 and prior, the package serializes DocumentType node fields (internalSubset, publicId, syste
CVE-2026-41673HigMay 7, 2026
affected < 0.8.4-r6fixed 0.8.4-r6
xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer` module. In @xmldom/xmldom prior to versions 0.9.10 and 0.8.13 and xmldom version 0.6.0 and prior, seven recursive traversals in lib/dom.js operate without a depth limit. A suffic
CVE-2026-41672HigMay 7, 2026
affected < 0.8.4-r6fixed 0.8.4-r6
xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer` module. In @xmldom/xmldom prior to versions 0.9.10 and 0.8.13 and xmldom version 0.6.0 and prior, the package allows attacker-controlled comment content to be serialized into XML
CVE-2026-41907HigApr 24, 2026
affected < 0.8.4-r6fixed 0.8.4-r6
uuid is for the creation of RFC9562 (formerly RFC4122) UUIDs. Prior to 14.0.0, v3, v5, and v6 accept external output buffers but do not reject out-of-range writes (small buf or large offset). This allows silent partial writes into caller-provided buffers. This vulnerability is fi
CVE-2026-42044MedApr 24, 2026
affected < 0.8.4-r6fixed 0.8.4-r6
Axios is a promise based HTTP client for the browser and Node.js. From 1.0.0 to before 1.15.2, he Axios library is vulnerable to a Prototype Pollution "Gadget" attack that allows any Object.prototype pollution in the application's dependency tree to be escalated into surgical, in
CVE-2026-40897HigApr 24, 2026
affected < 0.8.4-r5fixed 0.8.4-r5
Math.js is an extensive math library for JavaScript and Node.js. From 13.1.1 to before 15.2.0, a vulnerability allowed executing arbitrary JavaScript via the expression parser of mathjs. You can be affected when you have an application where users can evaluate arbitrary expressio
CVE-2026-41182MedApr 23, 2026
affected < 0.8.4-r5fixed 0.8.4-r5
LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to version 0.5.19 of the JavaScript SDK and version 0.7.31 of the Python SDK, the LangSmith SDK's output redaction controls (hideOutputs in JS, hide_outputs in Python) do not apply to streaming
CVE-2026-41242CriApr 18, 2026
affected < 0.8.4-r5fixed 0.8.4-r5
protobufjs compiles protobuf definitions into JavaScript (JS) functions. In versions prior to 8.0.1 and 7.5.5, attackers can inject arbitrary code in the "type" fields of protobuf definitions, which will then execute during object decoding using that definition. Versions 8.0.1 an
CVE-2026-40190MedApr 10, 2026
affected < 0.8.4-r5fixed 0.8.4-r5
LangSmith Client SDKs provide SDK's for interacting with the LangSmith platform. Prior to 0.5.18, the LangSmith JavaScript/TypeScript SDK (langsmith) contains an incomplete prototype pollution fix in its internally vendored lodash set() utility. The baseAssignValue() function onl
CVE-2026-40175MedApr 10, 2026
affected < 0.8.4-r5fixed 0.8.4-r5
Axios is a promise based HTTP client for the browser and Node.js. Versions prior to 1.15.0 and 0.3.1 are vulnerable to a specific gadget-style attack chain in which prototype pollution in a third-party dependency may be leveraged to inject unsanitized header values into outbound
CVE-2025-62718CriApr 9, 2026
affected < 0.8.4-r5fixed 0.8.4-r5
Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.0 and 0.31.0, Axios does not correctly handle hostname normalization when checking NO_PROXY rules. Requests to loopback addresses like localhost. (with a trailing dot) or [::1] (IPv6 literal) skip NO_
CVE-2026-39410MedApr 8, 2026
affected < 0.8.4-r5fixed 0.8.4-r5
Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.12, a discrepancy between browser cookie parsing and parse() handling allows cookie prefix protections to be bypassed. Cookie names that are treated as distinct by the browser may
CVE-2026-39409MedApr 8, 2026
affected < 0.8.4-r5fixed 0.8.4-r5
Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.12, ipRestriction() does not canonicalize IPv4-mapped IPv6 client addresses (e.g. ::ffff:127.0.0.1) before applying IPv4 allow or deny rules. In environments such as Node.js dual-s
CVE-2026-39408HigApr 8, 2026
affected < 0.8.4-r5fixed 0.8.4-r5
Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.12, a path traversal issue in toSSG() allows files to be written outside the configured output directory during static site generation. When using dynamic route parameters via ssgP
CVE-2026-39407MedApr 8, 2026
affected < 0.8.4-r5fixed 0.8.4-r5
Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.12, a path handling inconsistency in serveStatic allows protected static files to be accessed by using repeated slashes (//) in the request path. When route-based middleware (e.g.,
CVE-2026-39406MedApr 8, 2026
affected < 0.8.4-r5fixed 0.8.4-r5
@hono/node-server allows running the Hono application on Node.js. Prior to 1.19.13, a path handling inconsistency in serveStatic allows protected static files to be accessed by using repeated slashes (//) in the request path. When route-based middleware (e.g., /admin/*) is used f
CVE-2026-4800HigMar 31, 2026
affected < 0.8.4-r5fixed 0.8.4-r5
Impact: The fix for CVE-2021-23337 (https://github.com/advisories/GHSA-35jh-r3h4-6jhm) added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. When an a
CVE-2026-2950MedMar 31, 2026
affected < 0.8.4-r5fixed 0.8.4-r5
Impact: Lodash versions 4.17.23 and earlier are vulnerable to prototype pollution in the _.unset and _.omit functions. The fix for (CVE-2025-13465: https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg) only guards against string key members, so an attacker ca

Page 2 of 6