CVE-2026-41487

UNKNOWN 0.0

Langfuse: Improper role-based-access control in Langfuse LLM connection management allowed users of role “member” to retrieve stored LLM provider API keys

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Langfuse is an open source large language model engineering platform. From version 3.68.0 to before version 3.167.0, there is a role-based-access control flaw in the LLM connection update flow. An authenticated, low-privileged user of role “member” in a project could request the update of an existing LLM connection to an attacker-controlled baseUrl, causing Langfuse to reuse the stored provider secret and redirect the test request to an attacker-controlled endpoint. This could expose the plaintext provider LLM API key for that connection. The attack is only possible if a user is already part of a project and has “member” scoped access. This issue has been patched in version 3.167.0.

CWE	CWE-284
Vendor	langfuse
Product	langfuse
Published	May 8, 2026
Last Updated	May 8, 2026

Stay Ahead of the Next One

Get instant alerts for langfuse langfuse

Be the first to know when new unknown vulnerabilities affecting langfuse langfuse are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

langfuse / langfuse

>= 3.68.0, < 3.167.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/langfuse/langfuse/security/advisories/GHSA-2524-j966-gfgh github.com: https://github.com/langfuse/langfuse/pull/13027 github.com: https://github.com/langfuse/langfuse/pull/13055 github.com: https://github.com/langfuse/langfuse/commit/7527bb0d84bc0a3dc24a4b16d22ed2e46e6dddff github.com: https://github.com/langfuse/langfuse/commit/e12386f9d4368bbfff24a4ad7fd53641091605ff github.com: https://github.com/langfuse/langfuse/releases/tag/v3.167.0