3 matches found
CVE-2025-43862
creationtimestamp| type| source ---|---|--- 2025-04-25 17:19:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lnnq76yi6e2h 2025-04-25 18:02:30+00:00| seen| Telegram/t8K1XuU9DycjdS-BJ0HBwR2vMp2ysg1gNZKK5Q0GJ-ZI8I 2025-04-25 19:11:15+00:00| seen| https://t.me/cvedetector/23768...
CVE-2025-43862
Dify is an open-source LLM app development platform. Prior to version 0.6.12, a normal user is able to access and modify APP orchestration, even though the web UI of APP orchestration is not presented for a normal user. This access control flaw allows non-admin users to make unauthorized access a...
CVE-2025-43862
CVE-2025-43862 relates to Dify, an open-source LLM app development platform. Prior to version 0.6.12, a normal (non-admin) user could access and modify APP orchestration despite UI restrictions, due to an access-control flaw. This could allow unauthorized access and changes to APPs. The issue is ...