CVE-2026-6605: AgentScope vulnerable to Server-Side Request Forgery

April 20, 2026 (updated April 28, 2026)

A security flaw has been discovered in modelscope agentscope up to 1.0.18. This affects the function _get_bytes_from_web_url of the file src/agentscope/_utils/_common.py of the component Internal Service. Performing a manipulation results in server-side request forgery. It is possible to initiate the attack remotely. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

References

gist.github.com/YLChen-007/ced2d438ae79a5a11cea663c1ba2c954
github.com/advisories/GHSA-8ggf-r3vm-p3jc
github.com/agentscope-ai/agentscope
nvd.nist.gov/vuln/detail/CVE-2026-6605
vuldb.com/submit/792225
vuldb.com/vuln/358240
vuldb.com/vuln/358240/cti

Code Behaviors & Features

Detect and mitigate CVE-2026-6605 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →