Lucene search

GitHub Advisory DatabaseGHSA-G84Q-54HF-36RG

HistorySep 11, 2024 - 3:31 p.m.

AutoGPT bypass of the shell commands denylist settings

2024-09-1115:31:12

CWE-78

GitHub Advisory Database

github.com

autogpt

vulnerability

denylist

bypass

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

6.9

Confidence

High

EPSS

0.001

Percentile

39.9%

JSON

A vulnerability in significant-gravitas/autogpt version 0.5.1 allows an attacker to bypass the shell commands denylist settings. The issue arises when the denylist is configured to block specific commands, such as whoami and /bin/whoami. An attacker can circumvent this restriction by executing commands with a modified path, such as /bin/./whoami, which is not recognized by the denylist.

Affected configurations

Vulners

Node

agptautogptRange≤0.5.1

VendorProductVersionCPE
agptautogpt*cpe:2.3:a:agpt:autogpt:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
agpt	autogpt	*	cpe:2.3:a:agpt:autogpt::::::::

References

github.com/advisories/GHSA-g84q-54hf-36rg

github.com/significant-gravitas/autogpt/commit/ef691359b774a1f9f80cf4f5ace9821967b718ed

huntr.com/bounties/8a742c13-bb5e-4bc9-8b86-049d8a386050

nvd.nist.gov/vuln/detail/CVE-2024-6091

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

6.9

Confidence

High

EPSS

0.001

Percentile

39.9%

JSON

Related for GHSA-G84Q-54HF-36RG