Skip to main content

LightRAG CVE-2026-61740

| EUVDEUVD-2026-44671 CRITICAL
Improper Authentication (CWE-287)
2026-07-15 GitHub_M
9.3
CVSS 4.0 · Vendor: GitHub_M
Share

Severity by source

Vendor (GitHub_M) PRIMARY
9.3 CRITICAL
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vuln.today AI
9.4 CRITICAL

Unauthenticated network attacker (PR:N/UI:N/AC:L) in the affected profile reads data (C:H) and can upload/delete/mutate (I:H); deletion yields partial availability loss (A:L), scope unchanged.

3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N

Primary rating from Vendor (GitHub_M).

CVSS VectorVendor: GitHub_M

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

4
Patch available
Jul 15, 2026 - 17:48 EUVD
Source Code Evidence Fetched
Jul 15, 2026 - 15:18 vuln.today
Analysis Generated
Jul 15, 2026 - 15:18 vuln.today
CVE Published
Jul 15, 2026 - 14:14 cve.org
CRITICAL 9.3

DescriptionCVE.org

LightRAG provides simple and fast retrieval-augmented generation. Prior to 1.5.4, when LightRAG is deployed with LIGHTRAG_API_KEY set but AUTH_ACCOUNTS unset, X-API-Key protection can be bypassed because lightrag/api/auth.py falls back to a hardcoded DEFAULT_TOKEN_SECRET, /auth-status and /login can mint guest JWTs, and combined_dependency in lightrag/api/utils_api.py accepts a valid guest token before checking the API key. A remote unauthenticated attacker can call endpoints guarded by combined_auth, including document read, upload, deletion, graph mutation, and query endpoints. This vulnerability is fixed in 1.5.4.

AnalysisAI

Authentication bypass in HKUDS LightRAG before 1.5.4 lets a remote unauthenticated attacker defeat X-API-Key protection when the server runs in the API-key-only profile (LIGHTRAG_API_KEY set, AUTH_ACCOUNTS unset). Because auth.py falls back to a public hardcoded DEFAULT_TOKEN_SECRET and /auth-status and /login freely mint guest JWTs, combined_dependency honored a guest token before ever checking the API key, exposing document read/upload/delete, graph mutation, and query endpoints. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Locate exposed API-key-only LightRAG
Delivery
Request guest JWT from /auth-status or /login
Exploit
Submit guest token to combined_auth endpoint
Execution
Bypass X-API-Key via guest short-circuit
Impact
Read/upload/delete documents and mutate graph

Vulnerability AssessmentAI

Exploitation Exploitation requires the LightRAG server to run in the API-key-only profile: LIGHTRAG_API_KEY (X-API-Key) is set while AUTH_ACCOUNTS is left unset, which makes auth_configured False and causes AuthHandler to fall back to the public DEFAULT_TOKEN_SECRET. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment This is a genuine high-priority issue rather than a high-CVSS-but-low-real-risk case, but its scope is gated by deployment mode. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker discovers an internet-exposed LightRAG server running in the API-key-only profile, sends an unauthenticated request to /auth-status or /login to obtain a guest JWT (or forges one locally by signing with the known DEFAULT_TOKEN_SECRET), and presents that token to combined_auth-guarded endpoints. Without ever supplying the operator's X-API-Key, they read, upload, and delete indexed documents, mutate the knowledge graph, and run queries. …
Remediation Vendor-released patch: upgrade to LightRAG 1.5.4 or later, which reorders combined_dependency so guest tokens are ignored in the API-key-only profile and the X-API-Key header becomes mandatory (see GHSA-f4vv-55c2-5789, PR #3319, commit f7819aa, release tag v1.5.4). … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours, identify all LightRAG deployments running versions before 1.5.4 with API-key-only mode enabled (LIGHTRAG_API_KEY set, AUTH_ACCOUNTS unset) and immediately restrict network access to trusted systems only if patching cannot be completed. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-61740 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy