AnythingLLM Authentication Bypass Vulnerability in Workspaces API Endpoint

Vulnerability

A vulnerability allowing authentication bypass has been identified in AnythingLLM version 1.8.5. This issue arises in the '/api/workspaces' endpoint, which lacks proper authentication checks. As a result, unauthenticated remote attackers can enumerate and access detailed information about all configured workspaces. The exposed data includes workspace identifiers, AI model configurations, system prompts, operational parameters, vector search settings, chat modes, and timestamps.

Impact

Exploitation of this vulnerability leads to unauthorized access to sensitive workspace information, including configuration and prompt data. This could potentially allow an attacker to escalate privileges by gaining direct access to workspace resources.

Added: Dec 18, 2025, 5:13 PM

Updated: Dec 18, 2025, 5:13 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.7

remediation

0.0

relevance

1.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.7

remediation

0.0

relevance

1.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AnythingLLM Authentication Bypass Vulnerability in Workspaces API Endpoint

Vulnerability

Impact

Affected Products

Mintplex Labs AnythingLLM

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating