An OS command injection vulnerability exists in the MacOS Text-To-Speech class MacOSTTS of the significant-gravitas/autogpt project, affecting versions up to v0.5.0. The vulnerability arises from the improper neutralization of special elements used in an OS command within the `_speech` method of the MacOSTTS class. Specifically, the use of `os.system` to execute the `say` command with user-supplied text allows for arbitrary code execution if an attacker can inject shell commands. This issue is triggered when the AutoGPT instance is run with the `--speak` option enabled and configured with `TEXT_TO_SPEECH_PROVIDER=macos`, reflecting back a shell injection snippet. The impact of this vulnerability is the potential execution of arbitrary code on the instance running AutoGPT. The issue was addressed in version 5.1.0.
References
Link | Resource |
---|---|
https://github.com/significant-gravitas/autogpt/commit/26324f29849967fa72c207da929af612f1740669 | Patch |
https://huntr.com/bounties/4e742624-8771-4f3c-9634-3eaf33d6d58e | Exploit Issue Tracking Patch Third Party Advisory |
https://github.com/significant-gravitas/autogpt/commit/26324f29849967fa72c207da929af612f1740669 | Patch |
https://huntr.com/bounties/4e742624-8771-4f3c-9634-3eaf33d6d58e | Exploit Issue Tracking Patch Third Party Advisory |
Configurations
History
21 Nov 2024, 08:51
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/significant-gravitas/autogpt/commit/26324f29849967fa72c207da929af612f1740669 - Patch | |
References | () https://huntr.com/bounties/4e742624-8771-4f3c-9634-3eaf33d6d58e - Exploit, Issue Tracking, Patch, Third Party Advisory |
11 Oct 2024, 13:23
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/significant-gravitas/autogpt/commit/26324f29849967fa72c207da929af612f1740669 - Patch | |
References | () https://huntr.com/bounties/4e742624-8771-4f3c-9634-3eaf33d6d58e - Exploit, Issue Tracking, Patch, Third Party Advisory | |
First Time |
Agpt autogpt
Agpt |
|
CPE | cpe:2.3:a:agpt:autogpt:*:*:*:*:*:*:*:* |
07 Jun 2024, 14:56
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
06 Jun 2024, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-06-06 19:15
Updated : 2024-11-21 08:51
NVD link : CVE-2024-1880
Mitre link : CVE-2024-1880
CVE.ORG link : CVE-2024-1880
JSON object : View
Products Affected
agpt
- autogpt
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')