Insecure Direct Object Reference in RAGFlow Open-Source Engine
CVE-2025-25282
8.1HIGH
Key Information:
- Vendor
- Infiniflow
- Status
- Ragflow
- Vendor
- CVE Published:
- 21 February 2025
Summary
RAGFlow is vulnerable to an Insecure Direct Object Reference (IDOR) flaw, allowing authenticated users to gain unauthorized access to other tenant user accounts. This vulnerability can be exploited through specific HTTP requests, enabling attackers to list user accounts from different tenants or add users to other tenants. As the issue remains unpatched, users are strongly advised to contact project maintainers for coordination on addressing this vulnerability to safeguard user security.
Affected Version(s)
ragflow <= 0.13.0
References
CVSS V3.0
Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved