CVE-2026-41950

Name of the Vulnerable Software and Affected Versions Dify versions prior to 1.14.0

Description An authorization bypass allows authenticated users to read the full contents of files uploaded by other users within the same tenant. This occurs due to insufficient permission verification in the 'chat-messages' endpoint, which fails to validate file ownership. By supplying an arbitrary file UUID in the files array of a 'chat-messages' request, attackers can bypass workspace separation and signed URL protections to retrieve sensitive file contents through workflow processing.

Recommendations Update to version 1.14.0 or later.