CVE Tools

CVE-2026-41948

Dify v1.14.1 Path Traversal via Plugin Daemon Internal API Access

Published: May 18, 2026Updated: Jun 22, 2026 Sources: CVE List NVDCWE-23

Description

Dify version 1.14.1 and prior contain a path traversal vulnerability that allows authenticated users to manipulate requests forwarded to the Plugin Daemon's internal REST API by exploiting insufficient URL path sanitization. Attackers can traverse out of their authorized tenant path using unencoded dot sequences in task identifiers or manipulated filename parameters to access internal endpoints such as debug interfaces, requiring only knowledge of the victim tenant's UUID. NOTE: Dify Cloud allows unauthenticated free self-registration, making account creation trivially accessible to any attacker.

In plain language

AI Worth attention

CVE-2026-41948 is a path-traversal flaw in Dify v1.14.1 and earlier that can let an attacker use a specially crafted request to reach internal Dify features; it’s mainly a risk if someone already has an account in your Dify setup, so you should update and restrict access.

Executive summary

In dify (CVE-2026-41948), a path traversal issue (CWE-23) in the Plugin Daemon internal API routing allows crafted URL paths to escape tenant-scoped paths and access internal endpoints by insufficient URL path sanitization; exploitation requires no special user interaction and does not require authentication according to the core finding, but the patch guidance indicates tenant/route access is part of the trigger conditions.

If affected, business impact
Internal feature or debug accessCross-tenant data exposureSystem manipulation from tenantService disruption risk

What to do now

  1. Check whether you are running dify version 1.14.1 or earlier.
  2. Confirm whether the Plugin Daemon / plugin internal API endpoints are enabled and reachable from your users or networks.
  3. Review who has access to your Dify instance (especially any users who could reach the affected API routes).
  4. Apply the fix referenced by the Dify project (upgrade per the vendor’s release notes that include the referenced pull request).
  5. Until you can upgrade, restrict network access to Dify (especially the Plugin Daemon and any internal/admin-style endpoints) so only trusted networks/users can reach them.
Patch / advisory Some work to apply

CVSS Vector Breakdown

AV:NAC:LPR:NUI:NS:UC:HI:HA:L
Exploitability
AV:NAttack Vector
Network
AC:LAttack Complexity
Low
PR:NPrivileges Required
None
UI:NUser Interaction
None
Scope
S:UScope
Unchanged
Impact
C:HConfidentiality
High
I:HIntegrity
High
A:LAvailability
Low

Weaknesses

Affected Products

Exploitability

Workaround Available

Attack Graph

Products CVE Techniques Tactics

Click technique nodes for MITRE ATT&CK details · drag to pan · Ctrl/ + scroll to zoom, or go fullscreen.

MITRE ATT&CK

1 technique
Discovery
View detailed technique mapping

References

and 1 more references View all →
4

Unlock Complete Vulnerability Intelligence

Get the full picture for CVE-2026-41948 and every CVE in our database. Create a free account — no credit card required.

Create Free Account
Plain-language analysis
Impact assessment and exploitation scenario in plain English
Attack graph visualization
Interactive attack path and kill chain mapping
Exploit details & PoC links
ExploitDB, Metasploit, GitHub PoCs with direct links
Nuclei scanner templates
Ready-to-use vulnerability scanner templates
Full remediation guide
Patch instructions, workarounds, and compliance impact
Interactive AI chat
Ask questions about this vulnerability in natural language
Related vulnerabilities
Semantically similar CVEs and attack patterns
REST API & MCP access
Integrate vulnerability data into your workflows