Skip to main content

Cherry Studio EUVDEUVD-2026-40031

| CVE-2026-13534 LOW
Authorization Bypass Through User-Controlled Key (CWE-639)
2026-06-29 VulDB GHSA-qwwm-4xhq-q4m4
1.3
CVSS 4.0 · Vendor: VulDB

Severity by source

Vendor (VulDB) PRIMARY
1.3 LOW
CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vuln.today AI
4.2 MEDIUM

Network-reachable API delivery (AV:N), requires crafting a hash-colliding payload (AC:H), valid authenticated session needed (PR:L); no scope change or availability impact observed.

3.1 AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
4.0 AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (VulDB).

CVSS VectorVendor: VulDB

CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

3
CVSS changed
Jun 29, 2026 - 06:22 NVD
2.3 (LOW) 1.3 (LOW)
Source Code Evidence Fetched
Jun 29, 2026 - 05:46 vuln.today
Analysis Generated
Jun 29, 2026 - 05:46 vuln.today

DescriptionCVE.org

A vulnerability was detected in CherryHQ cherry-studio up to 1.9.7. This affects the function sha256 of the file src/main/services/memory/MemoryService.ts of the component CherryIN Preload API. Performing a manipulation of the argument state results in authorization bypass. The attack can be initiated remotely. The attack's complexity is rated as high. It is indicated that the exploitability is difficult. The exploit is now public and may be used. The vendor explains, that "[m]emory is planned to be removed in v2 version."

AnalysisAI

Authorization bypass in CherryHQ Cherry Studio up to version 1.9.7 allows authenticated remote attackers to cross user/agent memory isolation boundaries by manipulating memory content to produce SHA-256 hash collisions in the MemoryService deduplication logic. The vulnerable CherryIN Preload API component computed memory hashes solely from content, without scoping them to userId or agentId, enabling crafted inputs to match records belonging to other users. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Authenticate to Cherry Studio with low-privilege credentials
Delivery
Identify or infer target user's stored memory content
Exploit
Craft memory payload producing matching SHA-256 hash
Execution
Submit crafted payload via CherryIN Preload API
Persist
MemoryService resolves hash to target user's record without user-scope check
Impact
Access or overwrite target user's memory entries

Vulnerability AssessmentAI

Exploitation Exploitation requires: (1) a valid authenticated session with at least low-privilege access to Cherry Studio (PR:L per CVSS - unauthenticated exploitation is not possible); (2) the memory feature must be active and in use, as the vulnerable MemoryService code path is only exercised when memory operations are performed; (3) high attack complexity (AC:H) - the attacker must craft a memory string whose SHA-256 output collides with a target user's existing memory hash, which is computationally non-trivial without additional information about target content; (4) network access to the CherryIN Preload API endpoint. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 4.0 score of 2.3 (AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P) accurately reflects a narrow, real-world risk. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An authenticated low-privileged user of a shared or multi-user Cherry Studio deployment crafts a memory payload whose SHA-256 hash collides with a stored memory entry belonging to another user or agent scope. Because the original hash was computed without user or agent binding, the MemoryService's existence check returns the target user's record, bypassing per-user authorization. …
Remediation A patch is available as GitHub Pull Request #15413 (https://github.com/CherryHQ/cherry-studio/pull/15413), which scopes the SHA-256 deduplication hash to incorporate userId, agentId, and a schema version constant. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-40031 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy