CVE-2026-42456 Mintplex-Labs CVE debrief

Who should care

Organizations deploying AnythingLLM for multi-user environments where workspace collaboration features are enabled and private chat interactions require isolation between users.

Technical summary

The vulnerability exists in the GET /api/workspace/:slug/tts/:chatId endpoint of AnythingLLM, where workspace membership validation is performed but chat row ownership is not verified. This architectural gap in authorization logic creates an IDOR condition allowing authenticated users within a shared workspace to retrieve TTS audio for any chat response by manipulating the chatId parameter. The CVSS 3.1 vector AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N reflects network accessibility, low attack complexity, required low privileges, and confidentiality impact without integrity or availability effects.

Defensive priority

medium

Recommended defensive actions

• Upgrade to AnythingLLM version 1.12.1 or later to remediate this vulnerability
• Review access controls on TTS endpoints to ensure proper authorization checks for chat row ownership
• Audit workspace-level permissions to verify that resource-level authorization is enforced beyond membership validation
• Monitor access logs for unusual TTS endpoint requests that may indicate attempted exploitation
• If immediate patching is not possible, consider restricting TTS functionality or implementing additional authorization middleware

Evidence notes

The vulnerability description is sourced from the official CVE record and NVD entry, with technical details confirmed through the vendor's GitHub Security Advisory (GHSA-jwqg-jfg3-x5vv). The patch commit and release notes provide definitive remediation evidence.

Official resources