Which versions of Dify are affected by CVE-2026-41949?

Dify versions 1.14.1 and prior contain a cross-tenant file disclosure vulnerability allowing any authenticated user to read uploaded documents across all tenants and workspaces.. A patch is available.

Is there a public PoC exploit available for CVE-2026-41949?

Yes, a public proof-of-concept exploit is available for CVE-2026-41949. Prioritise patching immediately. EPSS: 0.0%.

Dify CVE-2026-41949

Q: What is the CVSS score of CVE-2026-41949?

CVE-2026-41949 has a CVSS 4.0 base score of 8.2 (High). CVSS vector: CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

Q: How to fix or mitigate CVE-2026-41949?

24 hours: Identify all Dify instances and their versions; implement IP-based or authentication-layer restrictions on /console/api/files/{file_id}/preview endpoint. 7 days: Apply vendor security patch to all Dify instances (versions 1.14.2 and later). 30 days: Review access logs for suspicious file preview activity; audit which files were accessible and notify affected data owners of potential exposure.

EUVD-2026-30774 HIGH

Authorization Bypass Through User-Controlled Key (CWE-639)

2026-05-18 VulnCheck

GHSA-jv3f-qwf9-wvq9

Authentication Bypass

8.2

CVSS 4.0

CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Lifecycle Timeline

Analysis Updated

May 18, 2026 - 15:30 vuln.today

v2 (cvss_changed)

Re-analysis Queued

May 18, 2026 - 15:22 vuln.today

cvss_changed

Severity Changed

May 18, 2026 - 15:22 NVD

MEDIUM HIGH

CVSS changed

May 18, 2026 - 15:22 NVD

5.9 (MEDIUM) 8.2 (HIGH)

Source Code Evidence Fetched

May 18, 2026 - 15:01 vuln.today

Analysis Generated

May 18, 2026 - 15:01 vuln.today

DescriptionNVD

Dify version 1.14.1 and prior contain an authorization bypass vulnerability in the file preview endpoint that allows any authenticated user to read up to 3,000 characters of any uploaded document across all tenants and workspaces using only the file's UUID. Attackers can access the /console/api/files/{file_id}/preview endpoint with an intercepted file UUID to extract sensitive content from documents without ownership or workspace permission verification. NOTE: Dify Cloud allows unauthenticated free self-registration, making account creation trivially accessible to any attacker.

AnalysisAI

{file_id}/preview endpoint. The flaw is amplified on Dify Cloud, where free self-registration makes account creation trivial, and publicly available exploit code exists via the Huntr disclosure. …

RemediationAI

{file_id}/preview endpoint. 7 days: Apply vendor security patch to all Dify instances (versions 1.14.2 and later). …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-41949 vulnerability details – vuln.today

Back

Dify CVE-2026-41949

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Analysis

Full analysis requires sign-in

Share

Dify CVE-2026-41949

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code