CRITICALVulnerability
Verified
Global

NVD CRITICAL: CVE-2026-59706 — mem0 contains unauthenticated config API endpoints that expose LLM API keys in p...

·Source: NIST NVD

Updated:

Executive Summary

mem0 contains unauthenticated config API endpoints that expose LLM API keys in plaintext and allow server-side request forgery via attacker-controlled ollama_base_url parameter. Unauthenticated attackers can retrieve stored secrets like OpenAI API keys via GET /api/v1/config/ or trigger SSRF attacks by setting ollama_base_url to internal addresses like cloud IMDS via PUT /api/v1/config/mem0/llm en

Analysis

mem0 contains unauthenticated config API endpoints that expose LLM API keys in plaintext and allow server-side request forgery via attacker-controlled ollama_base_url parameter. Unauthenticated attackers can retrieve stored secrets like OpenAI API keys via GET /api/v1/config/ or trigger SSRF attacks by setting ollama_base_url to internal addresses like cloud IMDS via PUT /api/v1/config/mem0/llm endpoint. CVSS Score: 9.3. Published: 2026-07-07T22:16:54.503.

Indicators of Compromise (1)

CVE (1)
CVE-2026-59706
Source Attribution

Originally published by NIST NVD on Jul 7, 2026. Verified by: NIST.

Related Threats