CVE-2026-61644
Received
Received - Intake
Information Disclosure in FastGPT
Vulnerability report for CVE-2026-61644, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.
Publication date: 2026-07-15
Last updated on: 2026-07-15
Assigner: GitHub, Inc.
Description
Description
FastGPT is a knowledge-based AI application platform. From 4.14.17 until 4.15.0-beta5, the POST /api/core/chat/record/getCollectionQuote endpoint authenticates the caller's chat and collection context, but the initialId center-node lookup is not bound to that authorized context. A low-privileged tenant user can call the endpoint with valid attacker-owned appId, chatId, chatItemDataId, and collectionId values while supplying another tenant's dataset data id as initialId, causing the response to include foreign dataset quote or full-text content. This issue is fixed in version 4.15.0-beta5.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| labring | fastgpt | 4.14.17 |
| labring | fastgpt | 4.14.18 |
| labring | fastgpt | 4.14.19 |
| labring | fastgpt | 4.14.20 |
| labring | fastgpt | 4.14.21 |
| labring | fastgpt | 4.14.22 |
| labring | fastgpt | 4.14.23 |
| labring | fastgpt | 4.15.0-beta5 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-863 | The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. |