CVE-2026-6586 in SuperAGIजानकारी

सारांश

द्वारा MITRE • 20/04/2026

A vulnerability was identified in TransformerOptimus SuperAGI up to 0.0.14. Impacted is the function get_budget/update_budget of the file superagi/controllers/budget.py of the component Budget Endpoint. Such manipulation leads to authorization bypass. It is possible to launch the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

जिम्मेदार

VulDB

प्रकटीकरण

20/04/2026

संयम

स्वीकृत

प्रविष्टि

VDB-358221

CPE

तैयार

CWE

CWE-639 (पुष्टि की गई)

शोषण

डाउनलोड

CVSS

6.3 (VulDB)

EPSS

0.00014

KEV

नहीं

गतिविधियाँ

बहुत कम

स्रोत

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-6586
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-6586
CVE Details	https://www.cvedetails.com/cve/CVE-2026-6586/

◂ पिछला सिंहावलोकन अगला ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!