LibreChat is a ChatGPT clone with additional features. Prior to v0.8.2-rc2, LibreChat's MCP stdio transport accepts arbitrary commands without validation, allow…

LibreChat, a ChatGPT clone application, contains a critical vulnerability in versions prior to v0.8.2-rc2. The vulnerability exists in the MCP stdio transport component which accepts arbitrary commands without proper validation. Any authenticated user can exploit this flaw to execute shell commands with root privileges inside the container through a single API request. This represents a severe privilege escalation vulnerability that allows complete compromise of the containerized application. The issue has been patched in version v0.8.2-rc2.