CVE-2026-0616

Published: Jan 16, 2026Modified: Jan 23, 2026

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 3.9 / Impact: 3.6

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

TheLibrarians web_fetch tool can be used to retrieve the Adminer interface content, which can then be used to log into the internal TheLibrarian backend system. The vendor has fixed the vulnerability in all affected versions.

Affected (1)

Products: Thelibrarian: The Librarian

Thelibrarian

1 product

The Librarian

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Thelibrarian The Librarian	All versions

References (2)

https://mindgard.ai/blog/thelibrarian-ios-ai-security-disclosure

Source: cret@cert.org

Third Party Advisory

https://thelibrarian.io/

Source: cret@cert.org

Product

Timeline

No history available yet.