Dify Access Control Vulnerability in APP Orchestration Allowing Unauthorized Modifications

An access control vulnerability has been identified in Dify, an open-source platform for developing applications with large language models. Prior to version 0.6.12, normal users could access and modify APP orchestration, despite the fact that the web interface for orchestration was not available to them. This flaw allowed non-admin users to make unauthorized changes to applications. The issue has been patched in version 0.6.12. A recommended workaround is to update access control mechanisms to enforce stricter user role permissions, ensuring that only users with admin privileges can access APP orchestration.

Impact

Exploitation of this vulnerability could lead to unauthorized access and modifications in APP orchestration, allowing normal users to alter workflows, prompts, and integrations within AI applications. Such actions could disrupt application functionality, cause excessive resource consumption, or misuse embedded API keys for services like OpenAI, DALL-E, and StableDiffusion, potentially leading to financial losses.

Reproduction

To reproduce this vulnerability, log in as a normal user and navigate to the APP orchestration section. Although the orchestration interface is not visible to normal users, the access control flaw allows them to interact with orchestration endpoints via the API. Once access is gained, unauthorized modifications can be made to the APP orchestration, including workflows and prompts.

Remediation

Update the access control mechanisms to enforce stricter user role permissions. Implement role-based access controls (RBAC) to ensure that only users with admin privileges can access APP orchestration.