CVE-2025-3466

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-3466

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-3466.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-3466

Published

2025-07-07T10:15:27.640Z

Modified

2026-04-10T05:25:34.274110Z

Severity

7.2 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

langgenius/dify versions 1.1.0 to 1.1.2 are vulnerable to unsanitized input in the code node, allowing execution of arbitrary code with full root permissions. The vulnerability arises from the ability to override global functions in JavaScript, such as parseInt, before sandbox security restrictions are imposed. This can lead to unauthorized access to secret keys, internal network servers, and lateral movement within dify.ai. The issue is resolved in version 1.1.3.

References

Affected packages

Git / github.com/langgenius/dify

Affected ranges

Type

GIT

Repo

https://github.com/langgenius/dify

Events

Introduced

ac80c04bd34344468b03f9c9e9d68fc7c00a6877

Fixed

1be0d26c1feb4bcbbdd2b4ae4eeb25874aadaddb

Database specific

{
    "versions": [
        {
            "introduced": "1.1.0"
        },
        {
            "fixed": "1.1.3"
        }
    ]
}

Affected versions

1.*

1.1.0

1.1.1

1.1.2

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-3466.json"