CVE-2026-26020

Name of the Vulnerable Software and Affected Versions AutoGPT versions prior to 0.6.48

Description AutoGPT is a platform for creating and managing AI agents to automate workflows. An authenticated user could achieve Remote Code Execution (RCE) on the backend server. This occurred because the BlockInstallationBlock, a tool for writing and importing Python code, was marked as disabled but graph validation did not enforce this setting. By including the block as a node within a graph, users bypassed the restriction. The vulnerable component is the BlockInstallationBlock.

Recommendations Update to version 0.6.48 or later.