A vulnerability categorized as problematic has been discovered in chatchat-space Langchain-Chatchat up to 0.3.1.3 . Impacted is the function files of the file libs/chatchat-server/chatchat/server/api_server/openai_routes.py of the component OpenAI-Compatible File Upload API . Such manipulation of the argument file.filename leads to time-of-check time-of-use. This vulnerability is traded as CVE-2026-7846 . Access to the local network is required for this attack to succeed. Furthermore, there is a