How to fix CVE-2026-32617?

Within 24 hours: Inventory all AnythingLLM deployments and document their network location (internet-facing vs. internal-only) and data classification. Within 7 days: Implement network segmentation to restrict AnythingLLM access to trusted networks only, and disable the application if not actively required. Within 30 days: Monitor vendor communication for patches and plan immediate deployment upon availability; consider alternative solutions if patch timeline extends beyond 60 days.

Is AI / ML affected by CVE-2026-32617?

AnythingLLM installations versions 1.11.1 and earlier are vulnerable to authentication bypass attacks, but exploitation is restricted to attackers already present on the same local network due to browser security protections.

CVE-2026-32617

EUVD-2026-12103 HIGH

2026-03-13 GitHub_M

7.1

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

Low

Lifecycle Timeline

Analysis Generated

Mar 13, 2026 - 21:01 vuln.today

EUVD ID Assigned

Mar 13, 2026 - 21:01 euvd

EUVD-2026-12103

CVE Published

Mar 13, 2026 - 20:07 nvd

HIGH 7.1

Description

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. In 1.11.1 and earlier, On default installations where no password or API key has been configured, all HTTP endpoints and the agent WebSocket lack authentication, and the server's CORS policy accepts any origin. AnythingLLM Desktop binds to 127.0.0.1 (loopback) by default. Modern browsers (Chrome, Edge, Firefox) implement Private Network Access (PNA). This explicitly blocks public websites from making requests to local IP addresses. Exploitation is only viable from within the same local network (LAN) due to browser-level blocking of public-to-private requests.

Analysis

AnythingLLM versions 1.11.1 and earlier contain an authentication bypass vulnerability on default installations where the application's HTTP endpoints and WebSocket connections lack proper authentication and accept requests from any origin. While rated CVSS 7.1, exploitation is limited to attackers on the same local network due to browser Private Network Access (PNA) protections, making this a medium-priority issue for most deployments.

Remediation

Within 24 hours: Inventory all AnythingLLM deployments and document their network location (internet-facing vs. internal-only) and data classification. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +36

POC: 0

CVE-2026-32617 vulnerability details – vuln.today

Back

CVE-2026-32617

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Analysis

Full analysis requires sign-in

Priority Score

Share

CVE-2026-32617

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Full analysis requires sign-in

Priority Score

Share

External POC / Exploit Code