CVE-2025-32424
Deferred Deferred - Pending Action
Denial of Service in AutoGPT via Unlimited Screenshot Storage

Publication date: 2026-06-18

Last updated on: 2026-06-18

Assigner: GitHub, Inc.

Description
AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.63, ScreenshotWebPageBlock will store the captured screenshots in a temporary directory. `StepThroughItemsBlock` can be used to iterate `ScreenshotWebPageBlock` multiple times. `StepThroughItemsBlock` does not limit the number of loops. In addition, `ScreenshotWebPageBlock` does not limit the amount of disk space consumed in the current working directory. When a malicious user chooses to screen shot many web pages, the disk space will eventually run out, causing a DoS. Version 0.6.63 patches the issue.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-18
Last Modified
2026-06-18
Generated
2026-06-19
AI Q&A
2026-06-18
EPSS Evaluated
N/A
NVD
CVE-2025-32424
EUVD
EUVD-2025-210281
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
significant_gravitas autogpt to 0.6.63 (exc)
significant_gravitas autogpt 0.6.63
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-400 The product does not properly control the allocation and maintenance of a limited resource.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2025-32424 is a critical Denial of Service (DoS) vulnerability in the AutoGPT platform, specifically in the ScreenshotWebPageBlock component.

The vulnerability occurs because ScreenshotWebPageBlock stores captured screenshots in a temporary directory without limiting the amount of disk space used.

Additionally, the StepThroughItemsBlock can repeatedly invoke ScreenshotWebPageBlock without limiting the number of iterations, allowing a malicious user to generate many screenshots.

This uncontrolled resource consumption can exhaust disk space, causing the system to become unavailable (DoS).

Moreover, a countdown timer can indefinitely delay agent completion, leading to persistent DoS even if the temporary directory is deleted.

Impact Analysis

This vulnerability can cause a Denial of Service (DoS) by exhausting disk space on the system running AutoGPT.

A malicious user can exploit this by forcing the system to take many screenshots repeatedly, filling up the disk and making the platform unavailable.

The DoS can persist even after deleting the temporary files due to an indefinite countdown timer delaying agent completion.

Detection Guidance

This vulnerability can be detected by monitoring disk space usage on the system where AutoGPT is running, especially in the temporary directories used by ScreenshotWebPageBlock. Excessive or rapidly increasing disk space consumption may indicate exploitation attempts.

Additionally, monitoring the number of iterations or loops executed by StepThroughItemsBlock could help identify abnormal behavior since it does not limit the number of loops.

Suggested commands to detect potential exploitation include:

  • Use disk usage commands to check for large or growing temporary directories, for example: `du -sh /path/to/temp/directory` or `df -h` to monitor overall disk space.
  • Use process monitoring commands to check for long-running or looping AutoGPT agents, such as `ps aux | grep autogpt` or inspecting logs for repeated ScreenshotWebPageBlock calls.
Mitigation Strategies

The immediate mitigation step is to upgrade AutoGPT to version 0.6.63 or later, where this vulnerability has been patched.

Until the upgrade can be applied, monitor and limit disk space usage in the temporary directories used by ScreenshotWebPageBlock to prevent disk exhaustion.

Additionally, restrict or monitor the use of StepThroughItemsBlock to prevent excessive looping that could lead to resource exhaustion.

Implement system-level disk quotas or alerts to detect and prevent uncontrolled resource consumption.

Compliance Impact

The provided information does not specify how the CVE-2025-32424 vulnerability impacts compliance with common standards and regulations such as GDPR or HIPAA.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-32424. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart