Vulnerabilities ›

CVE-2026-6608

Medium

CWE-670 — Weakness Type

                    Published: Apr 20, 2026                      ·  Modified: Apr 23, 2026                      ·  Source: NVD                

CVSS v3

5.3

🔗 NVD Official

📄 Description (English)

A vulnerability was detected in lm-sys fastchat up to 0.2.36. Impacted is the function add_text of the component Arena Side-by-Side View Handler. The manipulation results in incorrect control flow. The attack can be launched remotely. The exploit is now public and may be used. The root cause was fixed in commit 34eca62 for gradio_block_arena_named.py, but three other files were missed.

🤖 AI Executive Summary

A control flow vulnerability exists in lm-sys fastchat versions up to 0.2.36 affecting the Arena Side-by-Side View Handler's add_text function, allowing remote exploitation. The vulnerability was partially patched but three related files were missed, leaving systems exposed to attack.

📄 Description (Arabic)

تؤثر هذه الثغرة على مكون Arena Side-by-Side View Handler في fastchat وتسمح بتلاعب غير صحيح بتدفق التحكم عبر دالة add_text. يمكن استغلال الثغرة عن بعد وقد تم الكشف عن طريقة الاستغلال علناً. على الرغم من إصلاح جزئي في ملف واحد، لا تزال ثلاثة ملفات أخرى تحتوي على الثغرة.

🤖 ملخص تنفيذي (AI)

A control flow vulnerability in lm-sys fastchat up to version 0.2.36 affects the Arena Side-by-Side View Handler component, enabling remote attacks through the add_text function. Although a partial fix was applied to one file, three other vulnerable files remain unpatched.

🤖 AI Intelligence Analysis Analyzed: May 30, 2026 03:49

🇸🇦 Saudi Arabia Impact Assessment

Saudi Relevance: medium

🏢 Affected Saudi Sectors

government telecom healthcare

🎯 MITRE ATT&CK Techniques

T1190 T1203

⚖️ Saudi Risk Score (AI)

5.0

/ 10.0

🔧 Remediation Steps (English)

Upgrade lm-sys fastchat to version 0.2.37 or later. Apply the complete patch from commit 34eca62 to all affected files including gradio_block_arena_named.py and the three additional missed files. Review deployment logs for exploitation attempts and validate all instances are updated.

🔧 خطوات المعالجة (العربية)

قم بترقية lm-sys fastchat إلى الإصدار 0.2.37 أو أحدث. طبق التصحيح الكامل من commit 34eca62 على جميع الملفات المتأثرة بما في ذلك gradio_block_arena_named.py والملفات الثلاثة الأخرى المفقودة. راجع سجلات النشر بحثاً عن محاولات الاستغلال والتحقق من تحديث جميع الحالات.

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

A.7.1 A.12.2

🔵 SAMA CSF

ID.BE-1 PR.IP-1

🟡 ISO 27001:2022

A.12.2.1 A.14.2.1

🔗 References & Sources 6

🔗

https://gist.github.com/YLChen-007/e45039d23e698222d887ee09735d9d36

cna@vuldb.com

🔗

https://github.com/lm-sys/FastChat/

cna@vuldb.com

🔗

https://github.com/lm-sys/FastChat/issues/3834

cna@vuldb.com

🔗

https://vuldb.com/submit/792228

cna@vuldb.com

🔗

https://vuldb.com/vuln/358243

cna@vuldb.com

🔗

https://vuldb.com/vuln/358243/cti

cna@vuldb.com

📊 CVSS Score

5.3

/ 10.0 — Medium

📊 CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Attack VectorN — None / Network

Attack ComplexityL — Low / Local

Privileges RequiredN — None / Network

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityN — None / Network

IntegrityL — Low / Local

AvailabilityN — None / Network

📋 Quick Facts

Severity Medium

CVSS Score5.3

CWECWE-670

EPSS0.05%

Exploit No

Patch ✗ No

Published 2026-04-20

Source Feed nvd

🇸🇦 Saudi Risk Score

5.0

/ 10.0 — Saudi Risk

Priority: MEDIUM

🏷️ Tags

CWE-670

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

CVE-2026-6608

Introduce Yourself

Sign In Required