Severity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
6DescriptionCVE.org
A vulnerability was identified in TransformerOptimus SuperAGI up to 0.0.14. Impacted is the function get_budget/update_budget of the file superagi/controllers/budget.py of the component Budget Endpoint. Such manipulation leads to authorization bypass. It is possible to launch the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
AnalysisAI
Remote authentication bypass in TransformerOptimus SuperAGI budget endpoints (versions up to 0.0.14) allows authenticated users to manipulate budget settings without proper authorization checks, potentially enabling unauthorized modification of financial controls. The vulnerability affects the get_budget and update_budget functions in superagi/controllers/budget.py and has publicly available exploit code. The vendor did not respond to early disclosure attempts.
Technical ContextAI
The vulnerability resides in the Budget Endpoint component of TransformerOptimus SuperAGI, specifically in the budget.py controller file. CWE-285 (Improper Authorization) indicates insufficient or missing access control checks on sensitive budget operations. The affected functions (get_budget and update_budget) lack proper authorization validation to verify whether an authenticated user has the specific permission to view or modify budget data. SuperAGI is an autonomous AI agent framework, and the budget functionality likely controls resource allocation and spending limits for agent operations. The vulnerability is triggered via remote network access, meaning no local system access is required-only network connectivity and valid authentication credentials.
RemediationAI
Upgrade TransformerOptimus SuperAGI to a version newer than 0.0.14 immediately if a patched version is available from the vendor. Since the vendor has not responded to disclosure, check the official SuperAGI GitHub repository (https://github.com/TransformerOptimus/SuperAGI) for any released patches or security updates. If no official patch is available, implement compensating controls: restrict network access to the budget endpoints (get_budget and update_budget in superagi/controllers/budget.py) to a whitelist of trusted internal IPs using firewall rules or reverse proxy authentication; implement role-based access control (RBAC) at the application level to ensure only administrators can invoke budget modification operations; audit and revoke API tokens or session credentials for non-administrative users who do not require budget access; monitor budget endpoint logs for suspicious access patterns (multiple failed authorization attempts, bulk data modifications) and alert on anomalies. Note: these controls mitigate exploitation but do not eliminate the underlying authorization bypass-upgrading remains the primary remediation.
Same weakness CWE-285 – Improper Authorization
View allSame technique Authentication Bypass
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-23726
GHSA-f8vm-5j5r-ppjw