CNNVD-202507-2917 Information

CNNVD ID

CNNVD-202507-2917

Related CVE

CVE-2025-51472

• CNNVD Published: 2025-07-22

Description (Chinese)

SuperAGI是SuperAGI开源的一个开源基础设施应用程序。用于构建组件、工具、框架和模型以实现开源 AGI。 SuperAGI 0.0.14版本存在安全漏洞，该漏洞源于AgentTemplate.eval_agent_config存在代码注入漏洞，可能导致执行任意Python代码。

Description (English)

SuperAGI is an open source infrastructure application for SuperAGI open source. For building components, tools, frameworks and models to achieve open source AGI. The SuperAGI version 0.014 contains a security loophole that stems from the presence of AgentTemplate.eval agent config, which may lead to the implementation of any Python code.

Hazard Level

High

Vulnerability Type

命令注入

Affected Vendor

SuperAGI

Published

2025-07-22

Last Modified

2026-02-24

References

https://github.com/TransformerOptimus/SuperAGI/pull/1461 https://www.gecko.security/blog/cve-2025-51472 https://access.redhat.com/security/cve/cve-2025-51472 https://nvd.nist.gov/vuln/detail/CVE-2025-51472