Denial of Service Vulnerability in AutoGPT Workflow Automation Platform
CVE-2025-32394

5.3MEDIUM

Key Information:

Vendor

Significant-gravitas

Status
Autogpt
Vendor
CVE Published:
26 June 2026

What is CVE-2025-32394?

The AutoGPT workflow automation platform has a DoS vulnerability in the AITextSummarizerBlock prior to version 0.6.32. Malicious users can exploit this vulnerability by submitting excessive amounts of content, causing the server to consume significant memory resources. For instance, an input of 10,000 characters can lead to a memory usage spike of up to 50GB, potentially exhausting server resources and resulting in a denial of service condition. This issue has been addressed and resolved in version 0.6.32.

Affected Version(s)

AutoGPT < 0.6.32

References

https://github.com/Significant-Gravitas/AutoGPT/security/...
x_refsource_CONFIRM

CVSS V4

Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.