HIGH
Significant-Gravitas
CVE published 2026-05-19
CVE-2026-33232
CVE-2026-33232 is an unauthenticated denial-of-service issue in AutoGPT Platform. The vulnerable download_agent_file endpoint creates temporary files for each request but does not delete them after serving them, allowing repeated requests to consume disk space until the backend becomes unavailable. The reported impact is server-wide service failure, including database or other component errors due to "No [truncated]