Description
Chainlit before 2.10.1 contains a session hijacking vulnerability that allows unauthenticated attackers to restore and inherit authenticated user sessions by presenting a valid sessionId during WebSocket session restoration without ownership verification. Attackers can exploit the restore_existing_session path to assume a victim's permissions and roles, enabling unauthorized invocation of tools and access to data restricted to the authenticated victim.
Published: 2026-06-22
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Chainlit users are at risk of having their authenticated sessions hijacked because the system accepts any valid session identifier during WebSocket session restoration without verifying ownership. This flaw allows an attacker who can obtain a sessionId to assume a victim’s permissions, including invoking privileged tools and accessing data that should be restricted to the authenticated user.

Affected Systems

The vulnerability affects Chainlit versions prior to 2.10.1. Any deployment running the open-source package Chainlit in that version range is susceptible, regardless of the operating system or hosting environment.

Risk and Exploitability

With a CVSS score of 8.8, the flaw is considered severe. The EPSS score of <1% indicates a low but non-zero likelihood of exploitation, and the vulnerability has not been listed in CISA’s KEV catalog. An attacker can exploit the flaw remotely by connecting to the WebSocket endpoint and supplying a stolen or guessed sessionId; no additional authentication or privileged infrastructure is required to succeed.

Generated by OpenCVE AI on June 24, 2026 at 11:32 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Chainlit to version 2.10.1 or later to eliminate the session restoration flaw.
  • If an upgrade is not immediately possible, remove or block the restore_existing_session endpoint to prevent attackers from using it to hijack sessions.
  • Continuously monitor WebSocket traffic for anomalous session restoration attempts and investigate any unauthorized session activity.

Generated by OpenCVE AI on June 24, 2026 at 11:32 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 23 Jun 2026 15:45:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 7.4, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N'}

cvssV4_0

{'score': 9.1, 'vector': 'CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N'}

cvssV3_1

{'score': 8.2, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N'}

cvssV4_0

{'score': 8.8, 'vector': 'CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N'}


Mon, 22 Jun 2026 18:00:00 +0000

Type Values Removed Values Added
First Time appeared Chainlit
Chainlit chainlit
Vendors & Products Chainlit
Chainlit chainlit

Mon, 22 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 22 Jun 2026 15:45:00 +0000

Type Values Removed Values Added
Description Chainlit before 2.10.1 contains a session hijacking vulnerability that allows unauthenticated attackers to restore and inherit authenticated user sessions by presenting a valid sessionId during WebSocket session restoration without ownership verification. Attackers can exploit the restore_existing_session path to assume a victim's permissions and roles, enabling unauthorized invocation of tools and access to data restricted to the authenticated victim.
Title Chainlit < 2.10.1 Session Hijacking via WebSocket Session Restoration
Weaknesses CWE-862
References
Metrics cvssV3_1

{'score': 7.4, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N'}

cvssV4_0

{'score': 9.1, 'vector': 'CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N'}


Subscriptions

Chainlit Chainlit
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-23T14:42:38.931Z

Reserved: 2026-06-18T19:15:10.650Z

Link: CVE-2026-56104

cve-icon Vulnrichment

Updated: 2026-06-22T16:06:44.839Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-24T11:45:02Z

Weaknesses