πŸ” CVE Alert

CVE-2025-41023

UNKNOWN 0.0

Authentication bypass in AutoGPT de Thesamur

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

An authentication bypass vulnerability has been found in Thesamur's AutoGPT. This vulnerability allows an attacker to bypass authentication mechanisms. Once inside the web application, the attacker can use any of its features regardless of the authorisation method used.

CWE CWE-287
Vendor thesamur
Product autogpt
Published Feb 19, 2026
Last Updated Feb 23, 2026
Stay Ahead of the Next One

Get instant alerts for thesamur autogpt

Be the first to know when new unknown vulnerabilities affecting thesamur autogpt are published β€” delivered to Slack, Telegram or Discord.

Get Free Alerts β†’ Free Β· No credit card Β· 60 sec setup

Affected Versions

Thesamur / AutoGPT
All versions

References

NVD β†— CVE.org β†— EPSS Data β†—
incibe.es: https://www.incibe.es/en/incibe-cert/notices/aviso/authentication-bypass-autogpt-de-thesamur

Credits

Gonzalo Aguilar GarcΓ­a (6h4ack)