Loading market data...
← Back to CVE feed

CVE-2026-36719

HIGH CVSS 7.5 View on NVD ↗

Description

An information disclosure vulnerability in the /api/v1/user/info endpoint of AgentChat v2.3.0 allows unauthenticated attackers to obtain sensitive information, including SHA256 password hashes, via enumerating user IDs.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Published: Jun 09, 2026 19:17 UTC Modified: Jun 10, 2026 15:16 UTC