CVE-2025-64504

Name of the Vulnerable Software and Affected Versions Langfuse versions 2.70.0 through 2.95.10 Langfuse versions 3.0.0 through 3.124.0

Description Langfuse is a large language model engineering platform. In certain project membership APIs, the server improperly trusted a user-controlled orgId and used it in authorization checks. This allowed any authenticated user on the same Langfuse instance to enumerate names and email addresses of users in another organization if they knew the target organization’s orgId. The disclosure is limited to names and email addresses of members and invitees. No customer data such as traces, prompts, or evaluations was exposed. The vulnerability requires a valid Langfuse user account within the same instance, knowledge of the target orgId, and a request to the API powering the frontend membership tables, including the user’s authentication token, with the orgId modified to target the desired organization. The maintainers of Langfuse Cloud reviewed access logs and found no evidence of exploitation.

Recommendations Langfuse versions 2.70.0 through 2.95.10 should be upgraded to version 2.95.11 or later. Langfuse versions 3.0.0 through 3.124.0 should be upgraded to version 3.124.1 or later.