CVE-2026-45023 | THREATINT

Description

AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.59, POST /api/blocks/{block_id}/execute endpoint executes blocks without consuming any credits, regardless of the user's balance. The credit check that exists in the graph execution path (manager.py) is never reached when blocks are called directly via the external API, allowing unlimited free execution of all blocks. This vulnerability is fixed in 0.6.59.

PUBLISHED Reserved 2026-05-08 | Published 2026-05-28 | Updated 2026-05-29 | Assigner GitHub_M

MEDIUM: 5.4CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

Problem types

CWE-770: Allocation of Resources Without Limits or Throttling

CWE-841: Improper Enforcement of Behavioral Workflow

Product status

< 0.6.59

affected

References

github.com/...utoGPT/security/advisories/GHSA-8pjg-mfqm-vrhr exploit

github.com/...utoGPT/security/advisories/GHSA-8pjg-mfqm-vrhr

cve.org (CVE-2026-45023)

nvd.nist.gov (CVE-2026-45023)

Download JSON