ctipilot.ch

DifyTap — Dify AI platform cross-tenant authorization bypass (evaluated, dropped § 7: authenticated, no ITW, aggregator-only primary)

cve · CVE-2026-41947

Coverage timeline
1
first 2026-06-23 → last 2026-06-23
Briefs
1
1 distinct
Sources cited
0
0 hosts
Sections touched
0
Co-occurring entities
0
no co-occurrence

Story timeline

  1. 2026-06-23CTI Daily Brief — 2026-06-23

External references

NVD · cve.org · CISA KEV

Items in briefs about DifyTap — Dify AI platform cross-tenant authorization bypass (evaluated, dropped § 7: authenticated, no ITW, aggregator-only primary)

No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.