CVE-2026-32715

low-risk
Published 2026-03-16

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. In 1.11.1 and earlier, The two generic system-preferences endpoints allow manager role access, while every other surface that touches the same settings is restricted to admin only. Because of this inconsistency, a manager can call the generic endpoints directly to read plaintext SQL database credentials and overwrite admin-only global settings such as the default system prompt and the Community Hub API key.

Do I need to act?

-
0.03% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
3
CVSS 3.8/10 Low
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Mintplexlabs

References (3)

Patch https://github.com/Mintplex-Labs/anything-llm/commit/732eac6fa89f43288bbb65ecc62...
Exploit https://github.com/Mintplex-Labs/anything-llm/security/advisories/GHSA-wfq3-65gm...
Exploit https://github.com/Mintplex-Labs/anything-llm/security/advisories/GHSA-wfq3-65gm...
22
/ 100
low-risk
Severity 17/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal