Description
AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.63, ScreenshotWebPageBlock will store the captured screenshots in a temporary directory. `StepThroughItemsBlock` can be used to iterate `ScreenshotWebPageBlock` multiple times. `StepThroughItemsBlock` does not limit the number of loops. In addition, `ScreenshotWebPageBlock` does not limit the amount of disk space consumed in the current working directory. When a malicious user chooses to screen shot many web pages, the disk space will eventually run out, causing a DoS. Version 0.6.63 patches the issue.
Published: 2026-06-18
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

ScreenshotWebPageBlock stores captured screenshots in a temporary location without bounding disk usage. If StepThroughItemsBlock iterates this block repeatedly, the temporary directory can grow indefinitely, eventually exhausting available disk space. The result is a denial‑of‑service condition that can lock the entire AutoGPT instance or host system. This weakness is classified as CWE‑400, uncontrolled resource consumption.

Affected Systems

The flaw affects AutoGPT releases earlier than version 0.6.63 shipped by Significant‑Gravitas. Users running those versions on any operating system where AutoGPT writes to the working directory are vulnerable; updates after 0.6.63 contain the patch.

Risk and Exploitability

The CVSS score of 8.7 indicates high severity. Because there is no EPSS data, the likelihood of exploitation cannot be quantified, but the absence of a KEV listing suggests no publicly known exploits yet. The attack can be carried out by a user who can run AutoGPT scripts, so the attack vector is likely local or web‑based depending on the deployment context. Once triggered, the DoS can cause application and potentially host‑level unavailability.

Generated by OpenCVE AI on June 18, 2026 at 18:06 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade AutoGPT to version 0.6.63 or later
  • Configure StepThroughItemsBlock to limit the number of screenshots taken, thereby preventing excessive disk usage
  • Set up the environment to store screenshots in a dedicated, monitored directory with disk quota enforcement and schedule regular cleanup of unused files

Generated by OpenCVE AI on June 18, 2026 at 18:06 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 18 Jun 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 18 Jun 2026 18:45:00 +0000

Type Values Removed Values Added
First Time appeared Significant-gravitas
Significant-gravitas autogpt
Vendors & Products Significant-gravitas
Significant-gravitas autogpt

Thu, 18 Jun 2026 16:45:00 +0000

Type Values Removed Values Added
Description AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.63, ScreenshotWebPageBlock will store the captured screenshots in a temporary directory. `StepThroughItemsBlock` can be used to iterate `ScreenshotWebPageBlock` multiple times. `StepThroughItemsBlock` does not limit the number of loops. In addition, `ScreenshotWebPageBlock` does not limit the amount of disk space consumed in the current working directory. When a malicious user chooses to screen shot many web pages, the disk space will eventually run out, causing a DoS. Version 0.6.63 patches the issue.
Title AutoGPT has a DoS vulnerability in ScreenshotWebPageBlock
Weaknesses CWE-400
References
Metrics cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N'}


Subscriptions

Significant-gravitas Autogpt
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-06-18T18:42:04.307Z

Reserved: 2025-04-08T10:54:58.367Z

Link: CVE-2025-32424

cve-icon Vulnrichment

Updated: 2026-06-18T18:38:38.880Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-18T18:30:15Z

Weaknesses
  • CWE-400

    Uncontrolled Resource Consumption