cbcvebase.
CVE-2026-41948
published 2026-05-18

CVE-2026-41948: Dify version 1.14.1 and prior contain a path traversal vulnerability that allows authenticated users to manipulate requests forwarded to the Plugin Daemon's…

PriorityP264critical9.4CVSS 3.1
AVNACLPRNUINSUCHIHAL
EPSS
0.51%
39.5th percentile
Dify version 1.14.1 and prior contain a path traversal vulnerability that allows authenticated users to manipulate requests forwarded to the Plugin Daemon's internal REST API by exploiting insufficient URL path sanitization. Attackers can traverse out of their authorized tenant path using unencoded dot sequences in task identifiers or manipulated filename parameters to access internal endpoints such as debug interfaces, requiring only knowledge of the victim tenant's UUID. NOTE: Dify Cloud allows unauthenticated free self-registration, making account creation trivially accessible to any attacker.

Affected

2 ranges
VendorProductVersion rangeFixed in
difydify<= 1.14.1
langgeniusdify<= 1.14.1

Detection & IOCsextracted from sources · hover to see the quote

path/console/api/files/{file_id}/preview
  • Monitor for path traversal patterns using unencoded dot sequences (e.g., '../' or '..') in task identifier or filename parameters of requests forwarded to the Plugin Daemon's internal REST API.
  • Alert on authenticated requests to the Plugin Daemon's internal REST API that originate from tenant paths other than the authenticated tenant's own UUID, indicating cross-tenant path traversal.
  • Detect access to internal debug interfaces via the Plugin Daemon API from regular tenant-authenticated sessions, which should never occur under normal operation.
  • On Dify Cloud, treat unauthenticated free self-registration as a risk amplifier — any account, including newly registered ones, may be used to exploit this vulnerability without prior relationship to the platform.
  • Flag requests where the file UUID in the files array of a chat-messages request does not belong to the authenticated user, as this may indicate exploitation of the related cross-user file read vulnerability (CVE-2026-41950).
  • ·Exploitation requires only knowledge of the victim tenant's UUID, lowering the bar for cross-tenant attacks significantly.

CVSS provenance

nvdv3.19.4CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
nvdv4.09.3CRITICALCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.