Description
Chainlit before 2.10.1 contains a session hijacking vulnerability that allows unauthenticated attackers to restore and inherit authenticated user sessions by presenting a valid sessionId during WebSocket session restoration without ownership verification. Attackers can exploit the restore_existing_session path to assume a victim's permissions and roles, enabling unauthorized invocation of tools and access to data restricted to the authenticated victim.
Published: 2026-06-22
Score: 9.1 Critical
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Chainlit users are at risk of having their authenticated sessions hijacked because the system accepts any valid session identifier during WebSocket session restoration without verifying ownership. This flaw allows an attacker who can obtain a sessionId to assume a victim’s permissions, including invoking privileged tools and accessing data that should be restricted to the authenticated user.

Affected Systems

The vulnerability affects Chainlit versions prior to 2.10.1. Any deployment running the open-source package Chainlit in that version range is susceptible, regardless of the operating system or hosting environment.

Risk and Exploitability

With a CVSS score of 9.1, the flaw is considered severe. No EPSS score is available, and the vulnerability has not been listed in CISA’s KEV catalog. An attacker can exploit the flaw remotely by connecting to the WebSocket endpoint and supplying a stolen or guessed sessionId; no additional authentication or privileged infrastructure is required to succeed.

Generated by OpenCVE AI on June 22, 2026 at 16:28 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Chainlit to version 2.10.1 or later to eliminate the session restoration flaw.
  • If an upgrade is not immediately possible, remove or block the restore_existing_session endpoint to prevent attackers from using it to hijack sessions.
  • Continuously monitor WebSocket traffic for anomalous session restoration attempts and investigate any unauthorized session activity.

Generated by OpenCVE AI on June 22, 2026 at 16:28 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 22 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 22 Jun 2026 15:45:00 +0000

Type Values Removed Values Added
Description Chainlit before 2.10.1 contains a session hijacking vulnerability that allows unauthenticated attackers to restore and inherit authenticated user sessions by presenting a valid sessionId during WebSocket session restoration without ownership verification. Attackers can exploit the restore_existing_session path to assume a victim's permissions and roles, enabling unauthorized invocation of tools and access to data restricted to the authenticated victim.
Title Chainlit < 2.10.1 Session Hijacking via WebSocket Session Restoration
Weaknesses CWE-862
References
Metrics cvssV3_1

{'score': 7.4, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N'}

cvssV4_0

{'score': 9.1, 'vector': 'CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-22T16:06:48.051Z

Reserved: 2026-06-18T19:15:10.650Z

Link: CVE-2026-56104

cve-icon Vulnrichment

Updated: 2026-06-22T16:06:44.839Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-22T16:30:08Z

Weaknesses