CVE-2026-6605

HIGH

modelscope agentscope Internal Service _common.py _get_bytes_from_web_url server-side request forgery

Title source: cna

Description

A security flaw has been discovered in modelscope agentscope up to 1.0.18. This affects the function _get_bytes_from_web_url of the file src/agentscope/_utils/_common.py of the component Internal Service. Performing a manipulation results in server-side request forgery. It is possible to initiate the attack remotely. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

References (4)

Core 4

Core References

Vdb Entry, Technical Description vdb-entry technical-description

VDB-358240 | modelscope agentscope Internal Service _common.py _get_bytes_from_web_url server-side request forgery

https://vuldb.com/vuln/358240

Signature, Permissions Required signature permissions-required

VDB-358240 | CTI Indicators (IOB, IOC, IOA)

https://vuldb.com/vuln/358240/cti

Third Party Advisory third-party-advisory

Submit #792225 | AgentScope <= 1.0.18 Server-Side Request Forgery (CWE-918)

https://vuldb.com/submit/792225

Exploit exploit

https://gist.github.com/YLChen-007/ced2d438ae79a5a11cea663c1ba2c954

Scores

CVSS v3 7.3

EPSS 0.0033

EPSS Percentile 24.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

CWE

CWE-918

Status published

Products (20)

modelscope/agentscope 1.0.0

modelscope/agentscope 1.0.1

modelscope/agentscope 1.0.10

modelscope/agentscope 1.0.11

modelscope/agentscope 1.0.12

modelscope/agentscope 1.0.13

modelscope/agentscope 1.0.14

modelscope/agentscope 1.0.15

modelscope/agentscope 1.0.16

modelscope/agentscope 1.0.17

... and 10 more

Published Apr 20, 2026

Tracked Since Apr 20, 2026