CVE-2026-44286: CWE-918: Server-Side Request Forgery (SSRF) in labring FastGPT
FastGPT is an AI Agent building platform. Prior to version 4.14.17, an unauthenticated Server-Side Request Forgery (SSRF) vulnerability allows attackers (or authenticated users with App editing privileges) to send arbitrary HTTP requests to internal/private network addresses. The fetchData function in the lafModule workflow node uses axios to fetch user-controlled URLs without validating them against the application's internal network blocklist guard (isInternalAddress), bypassing SSRF protections. This issue has been patched in version 4.14.17.
AI Analysis
Technical Summary
CVE-2026-44286 is a Server-Side Request Forgery (SSRF) vulnerability in labring's FastGPT AI Agent building platform. The flaw exists in versions prior to 4.14.17 where the fetchData function in the lafModule workflow node uses axios to fetch URLs controlled by users without validating them against the internal network blocklist guard (isInternalAddress). This allows attackers, including unauthenticated users or authenticated users with app editing privileges, to bypass SSRF protections and send arbitrary HTTP requests to internal or private network addresses. The issue has been addressed and patched in FastGPT version 4.14.17.
Potential Impact
An attacker can exploit this vulnerability to make the server send arbitrary HTTP requests to internal or private network resources that are otherwise inaccessible externally. This could potentially expose internal services or data. However, the CVSS score of 2.3 and the low severity rating indicate that the impact is limited, and exploitation requires at least app editing privileges or unauthenticated access to the vulnerable endpoint.
Mitigation Recommendations
Upgrade FastGPT to version 4.14.17 or later, where the SSRF vulnerability has been patched. No other specific mitigations are indicated. Patch status is confirmed by the vendor advisory stating the issue is fixed in version 4.14.17.
CVE-2026-44286: CWE-918: Server-Side Request Forgery (SSRF) in labring FastGPT
Description
FastGPT is an AI Agent building platform. Prior to version 4.14.17, an unauthenticated Server-Side Request Forgery (SSRF) vulnerability allows attackers (or authenticated users with App editing privileges) to send arbitrary HTTP requests to internal/private network addresses. The fetchData function in the lafModule workflow node uses axios to fetch user-controlled URLs without validating them against the application's internal network blocklist guard (isInternalAddress), bypassing SSRF protections. This issue has been patched in version 4.14.17.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-44286 is a Server-Side Request Forgery (SSRF) vulnerability in labring's FastGPT AI Agent building platform. The flaw exists in versions prior to 4.14.17 where the fetchData function in the lafModule workflow node uses axios to fetch URLs controlled by users without validating them against the internal network blocklist guard (isInternalAddress). This allows attackers, including unauthenticated users or authenticated users with app editing privileges, to bypass SSRF protections and send arbitrary HTTP requests to internal or private network addresses. The issue has been addressed and patched in FastGPT version 4.14.17.
Potential Impact
An attacker can exploit this vulnerability to make the server send arbitrary HTTP requests to internal or private network resources that are otherwise inaccessible externally. This could potentially expose internal services or data. However, the CVSS score of 2.3 and the low severity rating indicate that the impact is limited, and exploitation requires at least app editing privileges or unauthenticated access to the vulnerable endpoint.
Mitigation Recommendations
Upgrade FastGPT to version 4.14.17 or later, where the SSRF vulnerability has been patched. No other specific mitigations are indicated. Patch status is confirmed by the vendor advisory stating the issue is fixed in version 4.14.17.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-05-05T17:39:31.112Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69fe61e5cbff5d8610367fbe
Added to database: 5/8/2026, 10:21:25 PM
Last enriched: 5/8/2026, 10:36:43 PM
Last updated: 5/9/2026, 2:26:24 AM
Views: 9
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.