Skip to main content

mem0 Server CVE-2026-31245

| EUVDEUVD-2026-29568 MEDIUM
Missing Authorization (CWE-862)
2026-05-12 cve@mitre.org GHSA-cgx8-qgvr-f7vf
5.3
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.3 MEDIUM
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
None

Lifecycle Timeline

4
Analysis Generated
May 13, 2026 - 16:00 vuln.today
CVSS changed
May 13, 2026 - 15:52 NVD
5.3 (None) 5.3 (MEDIUM)
CVE Published
May 12, 2026 - 18:16 nvd
UNKNOWN (no severity yet)
CVE Published
May 12, 2026 - 18:16 nvd
MEDIUM 5.3

DescriptionCVE.org

The mem0 1.0.0 server lacks authentication and authorization controls for its memory creation API endpoint (POST /memories). The endpoint allows unauthenticated users to submit arbitrary memory records without verifying their identity or permissions. A remote attacker can exploit this by sending unauthenticated POST requests to create malicious or spoofed memory entries in the database, leading to unauthorized data injection and potential data pollution.

AnalysisAI

mem0 1.0.0 server accepts unauthenticated POST requests to the /memories endpoint, allowing remote attackers to inject arbitrary memory records without identity verification or authorization checks. This authentication bypass enables data pollution and unauthorized modification of the memory database with spoofed entries. EPSS exploitation probability is low (0.05th percentile), and no active exploitation has been confirmed, but the vulnerability is automatable and affects default configurations.

Technical ContextAI

The mem0 server implements a memory creation API endpoint (POST /memories) that fails to enforce authentication or authorization controls as required by CWE-862 (Missing Authorization). The endpoint accepts structured memory record submissions without validating the requester's identity through tokens, credentials, or session management, nor does it verify permissions to create entries. This is a classic missing access control vulnerability where the application trusts all incoming requests regardless of source. The vulnerability affects the core data ingestion layer of the memory management system, allowing any network-accessible client to manipulate the persistent memory store.

RemediationAI

Upgrade mem0 to a patched version with authentication and authorization controls implemented on the /memories endpoint; consult vendor advisory at https://github.com/mem0ai/mem0 for the specific fixed version. If upgrade is not immediately available, implement a network-level authentication gateway or reverse proxy (e.g., nginx with HTTP Basic Auth, OAuth2 proxy, or API gateway) in front of the mem0 server to enforce identity verification before requests reach the /memories endpoint-this adds latency and operational complexity but fully blocks unauthenticated access. Alternatively, restrict network access to the /memories endpoint via firewall rules to trusted internal IP ranges or VPN-only connectivity; this limits functionality for remote or multi-tenant deployments but prevents external exploitation. Enable API request logging and alerting to detect suspicious patterns of memory creation from unexpected sources. Do not rely on IP-based controls alone if the mem0 deployment is accessible from untrusted networks.

Share

CVE-2026-31245 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy