CVE-2025-3466 CRITICAL

CVE-2025-3466: Unsanitized Input in langgenius/dify

Vendor Langgenius
Product langgenius/dify
Weakness CWE-1100
Published July 7, 2025
Last update July 7, 2025

CVSS base score

9.8/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

langgenius/dify versions 1.1.0 to 1.1.2 are vulnerable to unsanitized input in the code node, allowing execution of arbitrary code with full root permissions. The vulnerability arises from the ability to override global functions in JavaScript, such as parseInt, before sandbox security restrictions are imposed. This can lead to unauthorized access to secret keys, internal network servers, and lateral movement within dify.ai. The issue is resolved in version 1.1.3.

Key dates

02Disclosure timeline

July 7, 2025 CVE published
July 7, 2025 Record updated