CVE-2026-41950 - Dify < 1.14.0 Authorization Bypass via File UUID
CVE ID :CVE-2026-41950 Published : May 5, 2026, 9:16 p.m. | 1 hour, 11 minutes ago Description :Dify before version 1.14.0 contains an authorization bypass vulnerability that allows authenticated users to read the full contents of files uploaded by other users within the same tenant by supplyi
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] North Korean hackers targeted ethnic Koreans in China with Android ‘BirdCall’ malware
- [CYBER] Resort-related cyber fraud threatens Batangas tourism
- [CYBER] (3rd LD) Coupang swings to net loss in Q1 amid fallout from data breach
- [CYBER] Selecting Job Offer
- [CYBER] (2nd LD) Coupang swings to net loss in Q1 amid fallout from data breach
- [CYBER] CVE-2026-44405 - Paramiko RSA Key SHA-1 Vulnerability