Severity:
HIGH RISK
(7.3)
Code Injection via Unsafe File Import (CWE-94) in db-gpt Flow Import Endpoint
CVE-2026-3409
Published:
Mar 1, 2026
Status:
Awaiting Analysis
Summary
Affected Context
Exploit Preconditions
Why This Happens
Potential Impact
General Mitigation Guidance
How Teams Detect Issues Like This
Frequently Asked Questions
Source
NDV
