CVE-2025-1796

Name of the Vulnerable Software and Affected Versions langgenius/dify version 0.10.1

Description A weakness in the pseudo-random number generator (PRNG) used for generating password reset codes allows an attacker to take over any account, including administrator accounts. The application utilizes random.randint for this purpose, which is not suitable for cryptographic use and can be cracked. An attacker with access to workflow tools can extract the PRNG output and predict future password reset codes, leading to a complete compromise of the application.

Recommendations For version 0.10.1, consider disabling the password reset functionality until a patch is available that addresses the weak PRNG issue. Restrict access to workflow tools to minimize the risk of exploitation. Avoid using the random.randint function for cryptographic purposes, such as generating password reset codes, until a secure alternative is implemented.