CVE-2026-42302: CWE-306: Missing Authentication for Critical Function in labring FastGPT
FastGPT is an AI Agent building platform. From version 4.14.10 to before version 4.14.13, the agent-sandbox component of FastGPT is vulnerable to unauthenticated Remote Code Execution (RCE). The startup script entrypoint.sh initializes code-server with the --auth none flag and binds the service to all network interfaces (0.0.0.0:8080). This configuration allows any user with network access to the port to bypass authentication and gain full control over the sandbox environment. This issue has been patched in version 4.14.13.
AI Analysis
Technical Summary
FastGPT versions from 4.14.10 to before 4.14.13 contain a missing authentication vulnerability (CWE-306) in the agent-sandbox component. The startup script entrypoint.sh configures code-server with the --auth none flag and binds it to 0.0.0.0:8080, exposing the service without authentication to any network user. This misconfiguration allows unauthenticated remote code execution (RCE) on the sandbox environment. The vulnerability has a CVSS 3.1 score of 9.8, indicating critical severity. The vendor patched this issue in version 4.14.13.
Potential Impact
An attacker with network access to port 8080 on affected FastGPT instances can bypass authentication entirely and execute arbitrary code remotely within the sandbox environment. This leads to full compromise of the sandbox, including confidentiality, integrity, and availability impacts. The vulnerability is critical due to the ease of exploitation (no privileges or user interaction required) and the high impact on the system.
Mitigation Recommendations
Upgrade FastGPT to version 4.14.13 or later, where this vulnerability has been patched by removing the insecure --auth none configuration and restricting network exposure. Until the upgrade is applied, restrict network access to port 8080 to trusted users only to reduce exposure. Patch status is confirmed by the vendor's versioning information.
CVE-2026-42302: CWE-306: Missing Authentication for Critical Function in labring FastGPT
Description
FastGPT is an AI Agent building platform. From version 4.14.10 to before version 4.14.13, the agent-sandbox component of FastGPT is vulnerable to unauthenticated Remote Code Execution (RCE). The startup script entrypoint.sh initializes code-server with the --auth none flag and binds the service to all network interfaces (0.0.0.0:8080). This configuration allows any user with network access to the port to bypass authentication and gain full control over the sandbox environment. This issue has been patched in version 4.14.13.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
FastGPT versions from 4.14.10 to before 4.14.13 contain a missing authentication vulnerability (CWE-306) in the agent-sandbox component. The startup script entrypoint.sh configures code-server with the --auth none flag and binds it to 0.0.0.0:8080, exposing the service without authentication to any network user. This misconfiguration allows unauthenticated remote code execution (RCE) on the sandbox environment. The vulnerability has a CVSS 3.1 score of 9.8, indicating critical severity. The vendor patched this issue in version 4.14.13.
Potential Impact
An attacker with network access to port 8080 on affected FastGPT instances can bypass authentication entirely and execute arbitrary code remotely within the sandbox environment. This leads to full compromise of the sandbox, including confidentiality, integrity, and availability impacts. The vulnerability is critical due to the ease of exploitation (no privileges or user interaction required) and the high impact on the system.
Mitigation Recommendations
Upgrade FastGPT to version 4.14.13 or later, where this vulnerability has been patched by removing the insecure --auth none configuration and restricting network exposure. Until the upgrade is applied, restrict network access to port 8080 to trusted users only to reduce exposure. Patch status is confirmed by the vendor's versioning information.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-04-26T12:13:55.552Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69fe61e5cbff5d8610367fa9
Added to database: 5/8/2026, 10:21:25 PM
Last enriched: 5/8/2026, 10:36:26 PM
Last updated: 5/9/2026, 3:00:48 AM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.