Description
AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. In 1.11.1 and earlier, in multi-user mode, AnythingLLM blocks suspended users on the normal JWT-backed session path, but it does not block them on the browser extension API key path. If a user already has a valid brx-... browser extension API key, that key continues to work after suspension. As a result, a suspended user can still access browser extension endpoints, read reachable workspace metadata, and continue upload or embed operations even though normal authenticated requests are rejected.
Published: 2026-03-13
Score: 2.7 Low
EPSS: < 1% Very Low
KEV: No
Impact: Unauthorized access to workspace data and functionality via API keys for suspended users
Action: Apply Patch
AI Analysis

Impact

In the affected versions of AnythingLLM (1.11.1 and earlier), the system blocks suspended users when they use the normal JWT‑backed session path, but it fails to block them on the browser extension API key path. Consequently, a suspended user who holds a valid browser extension API key can continue to access browser extension endpoints, read workspace metadata, and perform upload or embed operations even though their regular authenticated requests are rejected. This is an access control bypass that allows a disallowed user to retain access to sensitive data and use of the application.

Affected Systems

The vulnerability affects the Mintplex‑Labs AnythingLLM application, specifically versions 1.11.1 and older. The patch or update required is available for newer releases beyond 1.11.1.

Risk and Exploitability

The CVSS score is 2.7, indicating a low severity vulnerability, and the EPSS score is less than 1%, suggesting a low likelihood of exploitation. The vulnerability is not listed in the CISA KEV catalog. The attack vector is inferred to be remote, via the browser extension API key, and the conditions for exploitation are: the user must be suspended but already possess a valid API key. The impact, while limited to the capabilities authenticated users normally have, can lead to unauthorized data access within the user's own workspace and continued use of the service.

Generated by OpenCVE AI on March 16, 2026 at 23:03 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade AnythingLLM to a version newer than 1.11.1
  • Verify that suspended accounts cannot use existing browser extension API keys
  • Check the Mintplex‑Labs repository or contact the vendor for any additional security patches
  • Consider implementing server‑side checks to enforce suspension status for all API key requests

Generated by OpenCVE AI on March 16, 2026 at 23:03 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 16 Mar 2026 20:45:00 +0000

Type Values Removed Values Added
First Time appeared Mintplexlabs anythingllm
CPEs cpe:2.3:a:mintplexlabs:anythingllm:*:*:*:*:*:*:*:*
Vendors & Products Mintplexlabs anythingllm

Mon, 16 Mar 2026 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 16 Mar 2026 10:15:00 +0000

Type Values Removed Values Added
First Time appeared Mintplexlabs
Mintplexlabs anything-llm
Vendors & Products Mintplexlabs
Mintplexlabs anything-llm

Fri, 13 Mar 2026 21:45:00 +0000

Type Values Removed Values Added
Description AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. In 1.11.1 and earlier, in multi-user mode, AnythingLLM blocks suspended users on the normal JWT-backed session path, but it does not block them on the browser extension API key path. If a user already has a valid brx-... browser extension API key, that key continues to work after suspension. As a result, a suspended user can still access browser extension endpoints, read reachable workspace metadata, and continue upload or embed operations even though normal authenticated requests are rejected.
Title AnythingLLM access control bypass: suspended users can continue using Browser Extension API keys
Weaknesses CWE-863
References
Metrics cvssV3_1

{'score': 2.7, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N'}

Subscriptions

Mintplexlabs Anything-llm Anythingllm
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-03-16T16:45:17.568Z

Reserved: 2026-03-13T14:33:42.825Z

Link: CVE-2026-32717

cve-icon Vulnrichment

Updated: 2026-03-16T16:45:08.394Z

cve-icon NVD

Status : Analyzed

Published: 2026-03-16T14:19:42.653

Modified: 2026-03-16T20:31:45.530

Link: CVE-2026-32717

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-03-23T13:39:16Z

Weaknesses