CVE-2024-1879

Name of the Vulnerable Software and Affected Versions significant-gravitas/autogpt version v0.5.0

Description A Cross-Site Request Forgery (CSRF) issue allows attackers to execute arbitrary commands on the AutoGPT server. The vulnerability stems from the lack of protections on the API endpoint receiving instructions, enabling an attacker to direct a user running AutoGPT in their local network to a malicious website. This site can then send crafted requests to the AutoGPT server, leading to command execution. The issue is exacerbated by CORS being enabled for arbitrary origins by default, allowing the attacker to read the response of all cross-site queries.

Recommendations Update to version 5.1 to patch this vulnerability. As a temporary workaround, consider restricting access to the API endpoint receiving instructions until the update is applied. Additionally, disabling CORS for arbitrary origins can help minimize the risk of exploitation.