agentscope 1.0.19

Direct Vulnerabilities

Known vulnerabilities in the agentscope package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
M Server-side Request Forgery (SSRF) agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) via the `_process_audio_block` function. An attacker can make unauthorized requests to internal or external systems by supplying crafted input to the `url` parameter. How to fix Server-side Request Forgery (SSRF)? There is no fixed version for `agentscope`.	[0,)
M Server-side Request Forgery (SSRF) agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) via the `_get_bytes_from_web_url` function. An attacker can access internal resources or sensitive information by sending crafted requests to arbitrary URLs. How to fix Server-side Request Forgery (SSRF)? There is no fixed version for `agentscope`.	[0,)
M Arbitrary Code Injection agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Arbitrary Code Injection via the `execute_shell_command` function. An attacker can execute arbitrary code by supplying crafted input remotely. How to fix Arbitrary Code Injection? There is no fixed version for `agentscope`.	[0,)
M Server-side Request Forgery (SSRF) agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) via the `_parse_url()`, `prepare_image()` and `openai_audio_to_text()` functions. An attacker can access internal resources and potentially exfiltrate sensitive information by supplying crafted values to the `image_url` or `audio_file_url` parameters. How to fix Server-side Request Forgery (SSRF)? There is no fixed version for `agentscope`.	[0,)
H Cross-site Request Forgery (CSRF) agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Cross-site Request Forgery (CSRF) due to overly permissive CORS headers in `_app.py`. How to fix Cross-site Request Forgery (CSRF)? There is no fixed version for `agentscope`.	[0,)
H Directory Traversal agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Directory Traversal via the `download_file` method. An attacker can access sensitive information, including configuration files and credentials, by exploiting this method to download any file from the host. How to fix Directory Traversal? There is no fixed version for `agentscope`.	[0,)
H Directory Traversal agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Directory Traversal through the `path` parameter due to improper input sanitization. An attacker can read arbitrary files on the server by manipulating the input to traverse the directory structure. How to fix Directory Traversal? There is no fixed version for `agentscope`.	[0,)
H External Control of File Name or Path agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to External Control of File Name or Path through the `/read-examples` endpoint. An attacker can read any local JSON file, containing API keys by sending a crafted POST request. How to fix External Control of File Name or Path? There is no fixed version for `agentscope`.	[0,)
C Deserialization of Untrusted Data agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the `AgentServerServicer.create_agent` method. An attacker can execute arbitrary commands on the server by deserializing untrusted data using the dill library. How to fix Deserialization of Untrusted Data? There is no fixed version for `agentscope`.	[0,)
M Origin Validation Error agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Origin Validation Error due to the CORS configuration on the server. An attacker can access unauthorized data and disclose information by sending requests from untrusted origins. How to fix Origin Validation Error? There is no fixed version for `agentscope`.	[0,)
C Arbitrary Code Injection agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform. Affected versions of this package are vulnerable to Arbitrary Code Injection. This vulnerability is caused by an incomplete fix for SNYK-PYTHON-AGENTSCOPE-8145542. The applied black-list to filter out dangerous commands can be simply bypassed. For example, the attackers can run `rm --rf` (note that there are more than one space character in between the `rm` and `-rf`) to bypass the check as the blocked item only has one space in between. Moreover, the current black-list also overlooked many other dangerous commands such as `netcat`, the hackers can simply create a backdoor by the command `nc -lvvp 6666 -e /bin/sh` to enable a remote shell and then log into the victim system to run arbitrary commands as follows. How to fix Arbitrary Code Injection? There is no fixed version for `agentscope`.	[0,)

Vulnerability

Vulnerable Version

Server-side Request Forgery (SSRF)

agentscope is an AgentScope: A Flexible yet Robust Multi-Agent Platform.

Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) via the _process_audio_block function. An attacker can make unauthorized requests to internal or external systems by supplying crafted input to the url parameter.

How to fix Server-side Request Forgery (SSRF)?