CVE-2026-41487— Langfuse: Improper role-based-access control in Langfuse LLM connection management allowed users of role “member” to retrieve stored LLM provider API keys

Langfuse: Improper role-based-access control in Langfuse LLM connection management allowed users of role “member” to retrieve stored LLM provider API keys

Langfuse is an open source large language model engineering platform. From version 3.68.0 to before version 3.167.0, there is a role-based-access control flaw in the LLM connection update flow. An authenticated, low-privileged user of role “member” in a project could request the update of an existing LLM connection to an attacker-controlled baseUrl, causing Langfuse to reuse the stored provider secret and redirect the test request to an attacker-controlled endpoint. This could expose the plaintext provider LLM API key for that connection. The attack is only possible if a user is already part of a project and has “member” scoped access. This issue has been patched in version 3.167.0.

N/A

访问控制不恰当

langfuse 访问控制错误漏洞

langfuse是Langfuse开源的一个大语言模型工程平台。 Langfuse 3.68.0版本至3.167.0之前版本存在访问控制错误漏洞，该漏洞源于LLM连接更新流程中基于角色的访问控制缺陷，可能导致低权限用户重定向测试请求并暴露明文提供商API密钥。

N/A

N/A