Skip to main content

AstrBot CVE-2026-10212

| EUVD-2026-33533 LOW
Authorization Bypass Through User-Controlled Key (CWE-639)
2026-06-01 VulDB GHSA-r6vm-4xwg-w69h
Authentication Bypass Astrbot
2.1
CVSS 4.0 · NVD

Severity by source

NVD PRIMARY
2.1 LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

3
Severity Changed
Jun 01, 2026 - 03:22 NVD
MEDIUM LOW
CVSS changed
Jun 01, 2026 - 03:22 NVD
6.3 (MEDIUM) 2.1 (LOW)
Analysis Generated
Jun 01, 2026 - 02:43 vuln.today

DescriptionCVE.org

A vulnerability was identified in AstrBotDevs AstrBot 4.24.2. This affects the function astr_main_agent of the file astrbot/core/astr_main_agent.py. Such manipulation of the argument session_id leads to authorization bypass. It is possible to launch the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

Authorization bypass in AstrBotDevs AstrBot 4.24.2 enables remote low-privilege authenticated attackers to manipulate the session_id argument within the astr_main_agent function to access or control sessions belonging to other users. The root cause is CWE-639 (Authorization Bypass Through User-Controlled Key), where the server fails to verify that the requesting user owns the supplied session_id. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Obtain low-privilege AstrBot account
Delivery
Enumerate or infer valid session_id of target user
Exploit
Craft API request substituting victim session_id
Execution
Submit request to astr_main_agent function
Persist
Server skips ownership validation
Impact
Gain unauthorized read/write access to victim session
Sign in to reveal

Vulnerability AssessmentAI

Exploitation The CVSS vector PR:L confirms that a low-privilege authenticated AstrBot account is required - unauthenticated exploitation is not indicated by available data. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 vector AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L scores 6.3 Medium, reflecting network reachability, low complexity, and low-privilege authentication as the only barrier. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario A publicly available exploit exists as a GitHub gist authored by YLChen-007 (https://gist.github.com/YLChen-007/91a7f955143099e1747424707dfad0f9). An attacker with a low-privilege AstrBot account enumerates or guesses valid session_id values associated with other users - for example, by observing session identifiers exposed in API responses or through sequential probing - and submits a crafted request to the astr_main_agent function substituting a victim's session_id. …
Remediation No vendor-released patch has been identified at time of analysis - the vendor did not respond to disclosure and no patched release version is available. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-10212 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy