CVE-2026-41947

EUVD-2026-30772

18.05.2026, 15:16

Dify version 1.14.1 and prior contains an authorization bypass vulnerability that allows authenticated editor users to set and enable trace configurations for any application regardless of tenant ownership. Attackers can exploit missing tenant ownership checks in the trace configuration endpoints to redirect all messages and responses from victim applications to attacker-controlled LLM trace providers. NOTE: Dify Cloud allows unauthenticated free self-registration, making account creation trivially accessible to any attacker.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
VulnCheck	CNA	7.4 HIGH	NETWORK	HIGH	NONE	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 8%

Affected Products (NVD)

Vendor	Product	Version
dify	dify	𝑥 ≤ 1.14.1

𝑥

= Vulnerable software versions

Early Detection

Affected products identified ahead of NVD analysis through intelligence sources.

Vendor	Product	Version	Source
langgenius	dify	𝑥 ≤ 1.14.1	CNA

Known Exploits!

https://huntr.com/bounties/a43076b2-fbc8-4750-9647-89a036b52f52

Common Weakness Enumeration

CWE-639 - Authorization Bypass Through User-Controlled Key
The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.

References

https://github.com/langgenius/dify/pull/35793

https://huntr.com/bounties/a43076b2-fbc8-4750-9647-89a036b52f52

https://www.vulncheck.com/advisories/dify-authorization-bypass-via-trace-configuration-endpoints