The Librarian Information Leakage Vulnerability via Web Fetch Tool

Vulnerability

A vulnerability allowing information leakage has been identified in The Librarian application. This issue arises through the web_fetch tool, which can be exploited to retrieve arbitrary external content provided by an attacker. Additionally, it allows proxying of requests through The Librarian's infrastructure. The vendor has addressed this vulnerability in all versions of The Librarian.

Impact

Exploitation of this vulnerability could lead to unauthorized information disclosure and the potential for malicious content to be retrieved and acted upon within The Librarian's infrastructure.

Added: Jan 16, 2026, 1:20 PM

Updated: Jan 16, 2026, 4:05 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.0

remediation

0.0

relevance

2.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.0

remediation

0.0

relevance

2.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

The Librarian Information Leakage Vulnerability via Web Fetch Tool

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating