Improper Access Control in Cognee by Topoteretes
CVE-2026-58473
Key Information:
- Vendor
Topoteretes
- Status
- Vendor
- CVE Published:
- 7 July 2026
Badges
What is CVE-2026-58473?
Cognee, prior to version 1.2.0, exhibits an improper access control vulnerability that allows unauthenticated attackers to register an account and modify global LLM provider configurations through the settings endpoint. This endpoint does not enforce necessary administrative checks, enabling attackers to redirect all LLM operations to a malicious endpoint. The exploitation of this vulnerability could lead to extensive data exposure, allowing attackers to intercept user prompts, uploaded documents, extracted entities, and knowledge graph content across the entire system.
Affected Version(s)
cognee 0
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
References
CVSS V4
Timeline
- ๐ก
Public PoC available
- ๐พ
Exploit known to exist
Vulnerability published
Vulnerability Reserved
