CVE-2026-24477 (CVSS 9.1) in AnythingLLM versions prior to 1.10.0 exposes the Qdrant vector database API key in plaintext via an unauthenticated endpoint, giving any attacker full read/write access to the organization’s RAG knowledge base; CISA KEV confirms active exploitation. A single unauthenticated GET to /api/setup-complete returns the credential with no authentication required, enabling knowledge base exfiltration or poisoning. Upgrade to AnythingLLM 1.10.0 immediately, rotate the Qdrant API key regardless of confirmed exploitation, and audit Qdrant access logs for anomalous collection enumeration or bulk retrieval operations.