CVE-2024-6091 | significant-gravitas AutoGPT up to 0.5.0 Denylist Setting os command injection

Inserito da Angelo Barbosa | Set 11, 2024 | CVE

A vulnerability, which was classified as very critical, was found in significant-gravitas AutoGPT up to 0.5.0. Affected is an unknown function of the component Denylist Setting Handler. The manipulation leads to os command injection.

This vulnerability is traded as CVE-2024-6091. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-6091 | significant-gravitas AutoGPT up to 0.5.0 Denylist Setting os command injection

Post correlati

CVE-2024-4447 | dotCMS Direct Web Remoting API UserSessionAjax.getSessionList.dwr authorization

CVE-2024-6065 | itsourcecode Bakery Online Ordering System 1.0 index.php user_email sql injection

CVE-2023-7183 | 7-card Fakabao up to 1.0_build20230805 shop/alipay_notify.php out_trade_no sql injection

CVE-2023-7212 | DeDeCMS up to 5.7.112 Backend file_class.php unrestricted upload