CVE-2026-41947

Published May 18, 2026

Last updated 17 days ago

Overview

AI description

Automated description summarized from trusted sources.

CVE-2026-41947 describes an authorization bypass vulnerability found in Dify, an open-source platform for building AI applications, specifically in versions prior to 1.14.2. This flaw allows authenticated editor users to set and enable trace configurations for any application, even those not owned by their tenant. Exploiting this vulnerability enables attackers to redirect all messages and responses from victim applications to their own controlled Large Language Model (LLM) trace providers. This is facilitated by missing tenant ownership checks within the trace configuration endpoints. Furthermore, Dify Cloud's allowance of unauthenticated free self-registration simplifies account creation for potential attackers.

Description
Dify before version 1.14.2 contains an authorization bypass vulnerability that allows authenticated editor users to set and enable trace configurations for any application regardless of tenant ownership. Attackers can exploit missing tenant ownership checks in the trace configuration endpoints to redirect all messages and responses from victim applications to attacker-controlled LLM trace providers. NOTE: Dify Cloud allows unauthenticated free self-registration, making account creation trivially accessible to any attacker.
Source
disclosure@vulncheck.com
NVD status
Modified
Products
dify

Risk scores

CVSS 4.0

Type
Secondary
Base score
9.3
Impact score
-
Exploitability score
-
Vector string
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Severity
CRITICAL

CVSS 3.1

Type
Secondary
Base score
9.1
Impact score
5.2
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Severity
CRITICAL

Weaknesses

disclosure@vulncheck.com
CWE-639

Social media

Hype score
Not currently trending

Configurations