CVE-2026-6583 in SuperAGI情報

要約

〜によって MITRE • 2026年04月20日

A vulnerability has been found in TransformerOptimus SuperAGI up to 0.0.14. This affects the function delete_api_key/edit_api_key of the file superagi/controllers/api_key.py of the component API Key Management Endpoint. The manipulation leads to authorization bypass. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

責任者

VulDB

公開

2026年04月20日

モデレーション

承諾済み

エントリ

VDB-358218

CPE

準備完了

CWE

CWE-639 (確認済み)

エクスプロイト

ダウンロード

CVSS

5.4 (VulDB)

EPSS

0.00014

KEV

いいえ

アクティビティ

非常低い

ソース

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-6583
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-6583
CVE Details	https://www.cvedetails.com/cve/CVE-2026-6583/

◂ 前概要次 ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!