MEDIUM🇵🇱 Wersja polska

CVE-2026-40100

CVSS 5.3v3.1pub. 2026-04-10upd. 2026-04-15

FastGPT is an AI Agent building platform. Prior to 4.14.10.3, the /api/core/app/mcpTools/runTool endpoint accepts arbitrary URLs without authentication. The internal IP check in isInternalAddress() only blocks private IPs when CHECK_INTERNAL_IP=true, which is not the default. This allows unauthenticated attackers to perform SSRF against internal network resources. This vulnerability is fixed in 4.14.10.3.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
  • Fastgpt

    APP
    Fastgpt
    < 4.14.10.3
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
SSRFAuth Bypass
CWE
References

Related vulnerabilities

CVE-2026-40351CRITICAL9.8PL ✓ten sam produkt

NoSQL Injection w FastGPT umożliwia pominięcie uwierzytelnienia

CVE-2026-34162CRITICAL10.0PL ✓ten sam produkt

FastGPT: nieuwierzytelniony endpoint proxy HTTP umożliwia SSRF

CVE-2026-33075CRITICAL9.4PL ✓ten sam produkt

FastGPT: RCE i eksfiltracja sekretów przez złośliwy Dockerfile w workflow CI/CD

CVE-2026-40352HIGH8.8ten sam produkt

FastGPT is an AI Agent building platform. In versions prior to 4.14.9.5, the password change endpoint is vulne...

CVE-2026-34163HIGH7.7ten sam produkt

FastGPT is an AI Agent building platform. Prior to version 4.14.9.5, FastGPT's MCP (Model Context Protocol) to...