cbcvebase.

Significant-Gravitas Autogpt vulnerabilities

24 known vulnerabilities affecting significant-gravitas/autogpt.

Total CVEs
24
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH13MEDIUM8LOW1

Vulnerabilities

Page 2 of 2
CVE-2025-32394P4MEDIUMCVSS 5.3fixed in 0.6.322026-06-26
CVE-2025-32394 [MEDIUM] CWE-405 CVE-2025-32394: AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificia AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.32, there is a DoS vulnerability in AITextSummarizerBlock. Malicious users can amplify their input. For example, if a malicious user inputs 10K of content, the server will consume 50G of memory, eventually causing m
nvd
CVE-2026-33234P4MEDIUMCVSS 5.0v>= 0.1.0, < 0.6.522026-05-19
CVE-2026-33234 [MEDIUM] CWE-918 CVE-2026-33234: AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificia AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. In versions 0.1.0 through 0.6.51, SendEmailBlock in autogpt_platform/backend/backend/blocks/email_block.py accepts a user-supplied smtp_server (string) and smtp_port (integer) as per-execution block inputs, then passes them dire
nvd
CVE-2025-32425P4MEDIUMCVSS 5.5fixed in 0.6.322026-05-13
CVE-2025-32425 [MEDIUM] CWE-770 CVE-2025-32425: AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intellig AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. In AutoGPT, the execution process is recorded to the console (stdout/stderr), and deployed in container mode, which is automatically captured by Docker and stored as "container logs". However, prior to 0.6.
nvd
CVE-2025-31494P4LOWCVSS 3.5fixed in 0.6.12025-04-15
CVE-2025-31494 [LOW] CWE-200 CVE-2025-31494: AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intellig AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. The AutoGPT Platform's WebSocket API transmitted node execution updates to subscribers based on the graph_id+graph_version. Additionally, there was no check prohibiting users from subscribing with another user
nvd
Significant-Gravitas Autogpt vulnerabilities | cvebase