Home

Description

FastGPT is an AI Agent building platform. From version 4.14.10 to before version 4.14.13, the agent-sandbox component of FastGPT is vulnerable to unauthenticated Remote Code Execution (RCE). The startup script entrypoint.sh initializes code-server with the --auth none flag and binds the service to all network interfaces (0.0.0.0:8080). This configuration allows any user with network access to the port to bypass authentication and gain full control over the sandbox environment. This issue has been patched in version 4.14.13.

PUBLISHED Reserved 2026-04-26 | Published 2026-05-08 | Updated 2026-05-08 | Assigner GitHub_M




CRITICAL: 9.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-306: Missing Authentication for Critical Function

Product status

>= 4.14.10, < 4.14.13
affected

References

github.com/...astGPT/security/advisories/GHSA-34rc-438g-7w78

github.com/labring/FastGPT/pull/6781

github.com/...ommit/9d1cafce9241430fb5bcdd646455055c5f4ae0a4

github.com/labring/FastGPT/releases/tag/v4.14.13

cve.org (CVE-2026-42302)

nvd.nist.gov (CVE-2026-42302)

Download JSON