Every CVE whose affected-product data names Agpt Autogpt Classic, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2024-1881 — CVSS 9.8 (critical): AutoGPT, a component of significant-gravitas/autogpt, is vulnerable to an improper neutralization of special elements used in an OS command…
CVE-2024-8156 — CVSS 9.8 (critical): A command injection vulnerability exists in the workflow-checker.yml workflow of significant-gravitas/autogpt. The untrusted user input…
CVE-2024-6091 — CVSS 9.8 (critical): A vulnerability in significant-gravitas/autogpt version 0.5.1 allows an attacker to bypass the shell commands denylist settings. The issue…
CVE-2024-1879 — CVSS 8.8 (high): A Cross-Site Request Forgery (CSRF) vulnerability in significant-gravitas/autogpt version v0.5.0 allows attackers to execute arbitrary…
CVE-2023-37273 — CVSS 8.1 (high): Auto-GPT is an experimental open-source application showcasing the capabilities of the GPT-4 language model. Running Auto-GPT version prior…
CVE-2024-1880 — CVSS 7.8 (high): An OS command injection vulnerability exists in the MacOS Text-To-Speech class MacOSTTS of the significant-gravitas/autogpt project…
CVE-2023-37274 — CVSS 7.5 (high): Auto-GPT is an experimental open-source application showcasing the capabilities of the GPT-4 language model. When Auto-GPT is executed…
CVE-2023-37275 — CVSS 3.1 (low): Auto-GPT is an experimental open-source application showcasing the capabilities of the GPT-4 language model. The Auto-GPT command line UI…