CVE-2025-32425

MEDIUM

AutoGPT < 0.6.32 Platform Containers - Docker Log Disk Exhaustion Denial of Service

Title source: manual

Description

AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. In AutoGPT, the execution process is recorded to the console (stdout/stderr), and deployed in container mode, which is automatically captured by Docker and stored as "container logs". However, prior to 0.6.32, there is no limit on the log size when the container is deployed. When the number of user accesses is too large, the log on the server disk will be too large, causing disk resource exhaustion and eventually causing DoS. autogpt-platform-beta-v0.6.32 fixes the issue.

References (4)

Core 4

Core References

X_Refsource_Confirm x_refsource_confirm

https://github.com/Significant-Gravitas/AutoGPT/security/advisories/GHSA-vw3v-whvp-33v5

X_Refsource_Misc x_refsource_misc

https://github.com/Significant-Gravitas/AutoGPT/commit/57a06f70883ce6be18738c6ae8bb41085c71e266

View Writeup ZIP pw:eip

X_Refsource_Misc x_refsource_misc

https://github.com/Significant-Gravitas/AutoGPT/blob/62361ccc48327b3124549543b45d933d16f622d2/autogpt_platform/autogpt_libs/autogpt_libs/logging/config.py#L83-L102

View Writeup ZIP pw:eip

X_Refsource_Misc x_refsource_misc

https://github.com/Significant-Gravitas/AutoGPT/blob/62361ccc48327b3124549543b45d933d16f622d2/autogpt_platform/docker-compose.platform.yml#L102-L142

View Writeup ZIP pw:eip

Scores

CVSS v3 5.5

EPSS 0.0018

EPSS Percentile 8.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-770

Status published

Products (2)

agpt/autogpt_platform < 0.6.32

Significant-Gravitas/AutoGPT < 0.6.32

Published May 13, 2026

Tracked Since May 13, 2026