CNNVD-202602-762 Information
CNNVD ID
CNNVD-202602-762
Related CVE
- CNNVD Published: 2026-02-04
Description (Chinese)
AutoGPT是AutoGPT开源的一个工具。用于让每个人都能使用和构建可访问的AI。 AutoGPT autogpt-platform-beta-v0.6.46之前版本存在日志信息泄露漏洞,该漏洞源于Stagehand集成块以明文记录API密钥和身份验证密钥,可能导致敏感信息泄露。
Description (English)
AutoGPT is a tool to open AutoGPT. Use this to make it possible for everyone to use and build accessable AI. The previous version of AutoGPT autogpt-platform-beta-v0.6.46 contains a leak in log information that originates from the Stagehand integration block to record explicitly the API key and the identification key, which may lead to the disclosure of sensitive information.
Hazard Level
High
Vulnerability Type
日志信息泄露
Affected Vendor
AutoGPT
Published
2026-02-04
Last Modified
2026-02-24
References
https://github.com/Significant-Gravitas/AutoGPT/commit/1eabc604842fa876c09d69af43d2d1e8fb9b8eb9 https://github.com/Significant-Gravitas/AutoGPT/security/advisories/GHSA-rc89-6g7g-v5v7
Patch
https://github.com/Significant-Gravitas/AutoGPT/releases
Share on: