CVE advisoryCRITICAL
CVE-2025-45150
LangChain-ChatGLM-Webui Sensitive File Disclosure Vulnerability
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A flaw in LangChain-ChatGLM-Webui permits attackers to view and download sensitive files using crafted requests due to insecure permissions. This could lead to the exposure of confidential information if the application is accessible. It is uncertain if this specific technology and its vulnerable configuration are in u