CVE-2026-6583 in SuperAGIИнформация

Сводка

по MITRE • 20.04.2026

A vulnerability has been found in TransformerOptimus SuperAGI up to 0.0.14. This affects the function delete_api_key/edit_api_key of the file superagi/controllers/api_key.py of the component API Key Management Endpoint. The manipulation leads to authorization bypass. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Ответственный

VulDB

Раскрытие

20.04.2026

Модерация

принято

Вход

VDB-358218

CPE

готов

CWE

CWE-639 (Подтверждённый)

Эксплойт

Скачать

CVSS

5.4 (VulDB)

EPSS

0.00014

KEV

Нет

Деятельности

Очень низкий

Источники

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-6583
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-6583
CVE Details	https://www.cvedetails.com/cve/CVE-2026-6583/

◂ Предыдущий Обзор Далее ▸

Interested in the pricing of exploits?

See the underground prices here!