EUVD-2026-23719

🗓️ 20 Apr 2026 00:30:14Reported by EUVDType

Remote authorization bypass in TransformerOptimus SuperAGI ≤0.0.14 via API Key Management endpoints.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2026-6583	19 Apr 202623:00	–	attackerkb
Circl	CVE-2026-6583	20 Apr 202600:13	–	circl
CNNVD	SuperAGI 安全漏洞	19 Apr 202600:00	–	cnnvd
CVE	CVE-2026-6583	19 Apr 202623:00	–	cve
Cvelist	CVE-2026-6583 TransformerOptimus SuperAGI API Key Management Endpoint api_key.py edit_api_key authorization	19 Apr 202623:00	–	cvelist
NVD	CVE-2026-6583	19 Apr 202623:16	–	nvd
Positive Technologies	PT-2026-33652	19 Apr 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-6583	5 Jun 202619:46	–	redhatcve
Vulnrichment	CVE-2026-6583 TransformerOptimus SuperAGI API Key Management Endpoint api_key.py edit_api_key authorization	19 Apr 202623:00	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "ddc243dd-fae2-35dc-ac9b-204d0f5951e1",
        "vendor": {
          "name": "transformeroptimus"
        }
      },
      {
        "id": "ed800ab2-d88b-3902-9d45-fdadfe3c5ba0",
        "vendor": {
          "name": "transformeroptimus"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "00df36dc-6e08-3d2f-8921-c1c358ea1f6a",
        "product": {
          "name": "SuperAGI"
        },
        "product_version": "0.0.6"
      },
      {
        "id": "10462615-0c08-3d42-8ff1-9288b063c136",
        "product": {
          "name": "SuperAGI"
        },
        "product_version": "0.0.11"
      },
      {
        "id": "11f74665-8bce-3efa-8420-9d18be5bc755",
        "product": {
          "name": "SuperAGI"
        },
        "product_version": "0.0.4"
      },
      {
        "id": "3d0ccc11-a1a1-3786-9cdd-22d86b8ff762",
        "product": {
          "name": "SuperAGI"
        },
        "product_version": "0.0.5"
      },
      {
        "id": "42807668-e771-3277-a00b-258bedfb70f0",
        "product": {
          "name": "SuperAGI"
        },
        "product_version": "0.0.13"
      },
      {
        "id": "4bc1729a-b480-38ae-8d50-f8605e47c950",
        "product": {
          "name": "SuperAGI"
        },
        "product_version": "0.0.14"
      },
      {
        "id": "95aa931e-1639-3371-a43f-ff0d7ae1b9c2",
        "product": {
          "name": "SuperAGI"
        },
        "product_version": "0.0.7"
      },
      {
        "id": "9c2bda8f-992e-3496-ab20-38bcf47095d5",
        "product": {
          "name": "SuperAGI"
        },
        "product_version": "0.0.8"
      },
      {
        "id": "a5c10242-92f3-391c-abce-84be16a7cc56",
        "product": {
          "name": "SuperAGI"
        },
        "product_version": "0.0.2"
      },
      {
        "id": "b43909fe-8ab0-3ddd-8397-a41974e3d3e4",
        "product": {
          "name": "SuperAGI"
        },
        "product_version": "0.0.9"
      },
      {
        "id": "c7759bbe-3560-3a9c-9f5a-67835a546dee",
        "product": {
          "name": "SuperAGI"
        },
        "product_version": "0.0.3"
      },
      {
        "id": "ce0d61f3-9cba-3a11-8b9e-5c8d11dde5a7",
        "product": {
          "name": "SuperAGI"
        },
        "product_version": "0.0.1"
      },
      {
        "id": "f8868068-96f4-3236-aaf3-5269b2c56688",
        "product": {
          "name": "SuperAGI"
        },
        "product_version": "0.0.10"
      },
      {
        "id": "ff6bb4c3-e3b8-3de5-80d0-5d13f0c2db43",
        "product": {
          "name": "SuperAGI"
        },
        "product_version": "0.0.12"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/vuln/358218
vuldb	www.vuldb.com/vuln/358218/cti
vuldb	www.vuldb.com/submit/791074
gist	www.gist.github.com/YLChen-007/ba28ac92d9fd011d40560dbf2bac39ce
nvd	www.nvd.nist.gov/vuln/detail/CVE-2026-6583

20 Apr 2026 00:30Current

5.2Medium risk

Vulners AI Score5.2

CVSS 45.3

CVSS 3.15.4

CVSS 25.5

CVSS 35.4

EPSS0.00014

SSVC