Unrated severityNVD Advisory· Published Mar 20, 2025· Updated Mar 20, 2025
Remote Code Execution in transformeroptimus/superagi
CVE-2024-9439
Description
SuperAGI is vulnerable to remote code execution in the latest version. The agent template update API allows attackers to control certain parameters, which are then fed to the eval function without any sanitization or checks in place. This vulnerability can lead to full system compromise.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: latest
- transformeroptimus/transformeroptimus/superagiv5Range: unspecified
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.