Description
WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. Prior to version 0.2.12, a broken access control vulnerability in the database query tool allows any authenticated tenant to read sensitive data belonging to other tenants, including API keys, model configurations, and private messages. The application fails to enforce tenant isolation on critical tables (models, messages, embeddings), enabling unauthorized cross-tenant data access with user-level authentication privileges. This issue has been patched in version 0.2.12.
Published: 2026-03-07
Score: 5.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Cross‑tenant data exposure
Action: Apply Patch
AI Analysis

Impact

A broken access control flaw in the database query tool of WeKnora permits an authenticated tenant to read sensitive data from other tenants, including API keys, model configurations, and private messages. This violates the isolation principle and is identified as a CWE‑284 type vulnerability, exposing confidentiality of data that should be tenant‑specific.

Affected Systems

Tencent’s WeKnora framework is affected. All deployments running a version prior to 0.2.12 are vulnerable. The issue was fixed in the 0.2.12 release, so any earlier installation carries risk.

Risk and Exploitability

The CVSS score of 5.3 indicates moderate severity, and the EPSS score of less than 1% suggests a low probability of exploitation. The flaw requires user‑level authentication, so attackers must gain legitimate access as a tenant user. Because the vulnerability is not listed in the CISA KEV catalog, there is no publicly known active exploitation at the time of this analysis.

Generated by OpenCVE AI on April 16, 2026 at 10:46 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update WeKnora to version 0.2.12 or later to patch the tenant isolation flaw.
  • Re‑configure the database query tool or restrict its permissions so that tenants can only query their own data tables.
  • Audit user privileges and access logs to ensure no cross‑tenant data is being accessed after the patch.

Generated by OpenCVE AI on April 16, 2026 at 10:46 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-2f4c-vrjq-rcgv WeKnora has Broken Access Control - Cross-Tenant Data Exposure
History

Mon, 09 Mar 2026 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 09 Mar 2026 17:45:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:tencent:weknora:*:*:*:*:*:*:*:*

Mon, 09 Mar 2026 10:15:00 +0000

Type Values Removed Values Added
First Time appeared Tencent
Tencent weknora
Vendors & Products Tencent
Tencent weknora

Sat, 07 Mar 2026 16:45:00 +0000

Type Values Removed Values Added
Description WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. Prior to version 0.2.12, a broken access control vulnerability in the database query tool allows any authenticated tenant to read sensitive data belonging to other tenants, including API keys, model configurations, and private messages. The application fails to enforce tenant isolation on critical tables (models, messages, embeddings), enabling unauthorized cross-tenant data access with user-level authentication privileges. This issue has been patched in version 0.2.12.
Title WeKnora: Broken Access Control - Cross-Tenant Data Exposure
Weaknesses CWE-284
References
Metrics cvssV3_1

{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N'}

Subscriptions

Tencent Weknora
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-03-09T18:24:14.545Z

Reserved: 2026-03-05T21:27:35.342Z

Link: CVE-2026-30859

cve-icon Vulnrichment

Updated: 2026-03-09T17:52:17.453Z

cve-icon NVD

Status : Analyzed

Published: 2026-03-07T17:15:53.673

Modified: 2026-03-09T17:35:20.613

Link: CVE-2026-30859

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-16T11:00:10Z

Weaknesses