CVE-2026-6605 MEDIUM

CVE-2026-6605: modelscope agentscope Internal Service _common.py _get_bytes_from_web_url server-side request forgery

Vendor Modelscope
Product agentscope
Weakness CWE-918 · SSRF
Published April 20, 2026
Last update April 20, 2026
View on NVD All CVEs

CVSS base score

6.9/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

What the vulnerability does

01Description

A security flaw has been discovered in modelscope agentscope up to 1.0.18. This affects the function _get_bytes_from_web_url of the file src/agentscope/_utils/_common.py of the component Internal Service. Performing a manipulation results in server-side request forgery. It is possible to initiate the attack remotely. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

Key dates

02Disclosure timeline

April 20, 2026 CVE published
April 20, 2026 Record updated

Related vulnerabilities

04Related CVE

CVE-2026-26322 OpenClaw Gateway tool allowed unrestricted gatewayUrl override CVE-2025-66405 Portkey.ai Gateway: Server-Side Request Forgery (SSRF) in Custom Host CVE-2026-27488 OpenClaw hardened cron webhook delivery against SSRF CVE-2021-42079 SSRF vulnerability in OSNEXUS QuantaStor before 6.0.0.355 CVE-2025-12388 B Carousel Block – Responsive Image and Content Carousel <= 1.1.5 - Missing Authorization to Authenticated (Subscriber+) Server-Side Request Forgery