Volerion logoVolerion
Volerion logoVolerion

Langgenius Dify Arbitrary Code Execution Vulnerability in Versions 1.1.0 to 1.1.2

Vulnerability

A vulnerability allowing arbitrary code execution with root privileges has been identified in Langgenius Dify, specifically in versions 1.1.0 through 1.1.2. This issue stems from unsanitized input in the code node, which enables the execution of malicious code by overriding global JavaScript functions, such as parseInt, before sandbox security measures take effect. Exploitation of this vulnerability could result in unauthorized access to secret keys, internal network servers, and facilitate lateral movement within the Dify.ai platform.

Impact

Exploitation of this vulnerability allows for arbitrary code execution with root privileges.

Reproduction

The vulnerability can be reproduced by inputting unsanitized data into the code node, which will then be executed with full root permissions. This can be done by crafting input that overrides global JavaScript functions before the sandbox applies its security restrictions.

Remediation

Users are advised to update to Dify version 1.1.3, where this vulnerability has been addressed.

Added: Jul 7, 2025, 10:28 AM
Updated: Jul 7, 2025, 10:28 AM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
10.0
exploitability
5.7
remediation
7.7
relevance
0.2
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.