CVE Tools

CVE-2026-41947

Dify < 1.14.2 Authorization Bypass via Trace Configuration Endpoints

Published: May 18, 2026Updated: Jun 22, 2026 Sources: CVE List NVDCWE-639

Description

Dify before version 1.14.2 contains an authorization bypass vulnerability that allows authenticated editor users to set and enable trace configurations for any application regardless of tenant ownership. Attackers can exploit missing tenant ownership checks in the trace configuration endpoints to redirect all messages and responses from victim applications to attacker-controlled LLM trace providers. NOTE: Dify Cloud allows unauthenticated free self-registration, making account creation trivially accessible to any attacker.

In plain language

AI Worth attention

In Dify versions before 1.14.2, a signed-in editor user can set tracing for other tenants’ applications, potentially redirecting private messages to an attacker-controlled tracing service—small businesses running Dify should patch because multi-tenant setups are especially exposed.

Executive summary

In dify before 1.14.2, there is an authorization bypass (CWE-639) in Trace configuration endpoints that is triggered by missing tenant ownership checks; an authenticated editor user can configure trace endpoints for any application on the instance, enabling message/response redirection to attacker-controlled LLM trace providers.

If affected, business impact
Cross-tenant private data exposurePersistent data exfiltration channelCompromised customer/service promptsOperational trust and compliance impact

What to do now

  1. Check whether your dify deployment is running a version earlier than 1.14.2.
  2. Identify whether any accounts with “editor” ability exist that are not strictly limited to trusted staff.
  3. Upgrade dify to version 1.14.2 or later.
  4. After upgrading, verify trace settings/trace endpoints are only configured for the intended applications and tenants.
Patch / advisory Usually a quick update

CVSS Vector Breakdown

AV:NAC:LPR:NUI:NS:UC:HI:HA:N
Exploitability
AV:NAttack Vector
Network
AC:LAttack Complexity
Low
PR:NPrivileges Required
None
UI:NUser Interaction
None
Scope
S:UScope
Unchanged
Impact
C:HConfidentiality
High
I:HIntegrity
High
A:NAvailability
None

Weaknesses

Affected Products

Exploitability

Workaround Available

Attack Graph

Products CVE Techniques Tactics

Click technique nodes for MITRE ATT&CK details · drag to pan · Ctrl/ + scroll to zoom, or go fullscreen.

MITRE ATT&CK

1 technique
Initial Access
View detailed technique mapping

References

and 3 more references View all →
4

Unlock Complete Vulnerability Intelligence

Get the full picture for CVE-2026-41947 and every CVE in our database. Create a free account — no credit card required.

Create Free Account
Plain-language analysis
Impact assessment and exploitation scenario in plain English
Attack graph visualization
Interactive attack path and kill chain mapping
Exploit details & PoC links
ExploitDB, Metasploit, GitHub PoCs with direct links
Nuclei scanner templates
Ready-to-use vulnerability scanner templates
Full remediation guide
Patch instructions, workarounds, and compliance impact
Interactive AI chat
Ask questions about this vulnerability in natural language
Related vulnerabilities
Semantically similar CVEs and attack patterns
REST API & MCP access
Integrate vulnerability data into your workflows