CVE-2025-63387
published 2025-12-18CVE-2025-63387: Dify v1.9.1 is vulnerable to Insecure Permissions. An unauthenticated attacker can directly send HTTP GET requests to the /console/api/system-features endpoint…
PriorityP185high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
28.04%
97.9th percentile
Dify v1.9.1 is vulnerable to Insecure Permissions. An unauthenticated attacker can directly send HTTP GET requests to the /console/api/system-features endpoint without any authentication credentials or session tokens. The endpoint fails to implement proper authorization checks, allowing anonymous access to sensitive system configuration data. NOTE: The maintainer states that the endpoint is unauthenticated by design and serves as a bootstrap mechanism required for the dashboard initialization. They also state that the description inaccurately classifies the returned data as sensitive system configuration, stating that the data is non-sensitive and required for client-side rendering. No PII, credentials, or secrets are exposed.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| langgenius | dify | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Send an unauthenticated HTTP GET request to /console/api/system-features; a vulnerable Dify instance will return HTTP 200 with a JSON body containing both '"status":' and '"sso_enforced_for_signin":' fields and Content-Type: application/json. ↗
- →FOFA query 'app="Dify"' can be used to identify internet-exposed Dify instances potentially affected by this unauthenticated endpoint.
- ·The Dify maintainer states the /console/api/system-features endpoint is intentionally unauthenticated by design, serving as a bootstrap mechanism for dashboard initialization, and that the returned data is non-sensitive (no PII, credentials, or secrets exposed). Detection of a 200 response does NOT necessarily indicate a misconfiguration or compromise. ↗
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
vulncheck7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-hrf9-jmwr-6222: Dify v1
ghsa_unreviewed·2025-12-18
CVE-2025-63387 [HIGH] CWE-284 GHSA-hrf9-jmwr-6222: Dify v1
Dify v1.9.1 is vulnerable to Insecure Permissions. An unauthenticated attacker can directly send HTTP GET requests to the /console/api/system-features endpoint without any authentication credentials or session tokens. The endpoint fails to implement proper authorization checks, allowing anonymous access to sensitive system configuration data.
VulnCheck
langgenius dify Improper Access Control
vulncheck·2025·CVSS 7.5
CVE-2025-63387 [HIGH] langgenius dify Improper Access Control
langgenius dify Improper Access Control
Dify v1.9.1 is vulnerable to Insecure Permissions. An unauthenticated attacker can directly send HTTP GET requests to the /console/api/system-features endpoint without any authentication credentials or session tokens. The endpoint fails to implement proper authorization checks, allowing anonymous access to sensitive system configuration data. NOTE: The maintainer states that the endpoint is unauthenticated by design and serves as a bootstrap mechanism required for the dashboard initialization. They also state that the description inaccurately classifies the returned data as sensitive system configuration, stating that the data is non-sensitive and required for client-side rendering. No PII, credentials, or secrets are exposed.
Affected: langgenius
No detection rules found.
Nuclei
Dify v1.9.1 - Broken Access Control
nuclei·CVSS 7.5
CVE-2025-63387 [HIGH] Dify v1.9.1 - Broken Access Control
Dify v1.9.1 - Broken Access Control
Dify v1.9.1 contains an insecure permissions vulnerability caused by lack of authorization checks in /console/api/system-features endpoint, letting unauthenticated attackers access sensitive system configuration data.
Template:
id: CVE-2025-63387
info:
name: Dify v1.9.1 - Broken Access Control
author: DhiyaneshDK
severity: medium
description: |
Dify v1.9.1 contains an insecure permissions vulnerability caused by lack of authorization checks in /console/api/system-features endpoint, letting unauthenticated attackers access sensitive system configuration data.
impact: |
Unauthenticated attackers can access sensitive system configuration data, potentially leading to information disclosure.
remediation: |
Update to the latest version of Dify.
reference:
No writeups or analysis indexed.
https://gist.github.com/Cristliu/cddc0cbbf354de51106ab63a11be94afhttps://gist.github.com/Cristliu/dfc5f3a31dc6d7fff2754867e5c649a5https://github.com/langgenius/dify/discussionshttps://github.com/langgenius/dify/issues/31368#issuecomment-3783712203https://github.com/langgenius/dify/pull/31392https://github.com/langgenius/dify/pull/31417
2025-12-18
Published
Exploited in the wild