Vulnerability Database

318,756

Total vulnerabilities in the database

CVE-2025-62612

FastGPT is an AI Agent building platform. Prior to version 4.11.1, in the workflow file reading node, the network link is not security-verified, posing a risk of SSRF attacks. This issue has been patched in version 4.11.1.

Published: Oct 22, 2025
Updated: Dec 30, 2025
CVE: CVE-2025-62612
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.3
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWEs:

CWE-918

Affected Software
References

Software	From	Fixed in
fastgpt / fastgpt	-	4.11.1

https://github.com/labring/FastGPT/security/advisories/GHSA-573g-3567-8phg

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo