All 4 CVE vulnerabilities found in Bytedesk, with AI-generated Chinese analysis, references, and POCs.
Vendor: n/a
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-3789 | Bytedesk SpringAIGiteeRestController SpringAIGiteeRestService.java getModels server-side request forgery CWE-918 | 6.3 | Medium | 2026-03-08 |
| CVE-2026-3788 | Bytedesk SpringAIOpenrouterRestController SpringAIOpenrouterRestService.java getModels server-side request forgery CWE-918 | 6.3 | Medium | 2026-03-08 |
| CVE-2026-3749 | Bytedesk SVG File UploadRestService.java handleFileUpload unrestricted upload CWE-434 | 6.3 | Medium | 2026-03-08 |
| CVE-2026-3748 | Bytedesk SVG File UploadRestController.java uploadFile unrestricted upload CWE-434 | 6.3 | Medium | 2026-03-08 |
All 4 known CVE vulnerabilities affecting Bytedesk with full Chinese analysis, references, and POCs where available.