PT-2026-23988 · Bytedesk · Bytedesk
Zast.Ai
·
Published
2026-03-08
·
Updated
2026-03-10
·
CVE-2026-3788
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Bytedesk versions up to 1.3.9
Description
A server-side request forgery condition exists in Bytedesk. The issue is located in the
getModels function within the SpringAIOpenrouterRestController component, specifically in the file source-code/src/main/java/com/bytedesk/ai/springai/providers/openrouter/SpringAIOpenrouterRestService.java. Manipulation of the apiUrl argument can lead to server-side request forgery. The exploit has been publicly disclosed.Recommendations
Upgrade to version 1.4.5.4 to resolve this issue.
Exploit
Fix
SSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Bytedesk