CNNVD-202507-2918 Information

CNNVD ID

CNNVD-202507-2918

Related CVE

CVE-2025-51475

• CNNVD Published: 2025-07-22

Description (Chinese)

SuperAGI是SuperAGI开源的一个开源基础设施应用程序。用于构建组件、工具、框架和模型以实现开源 AGI。 SuperAGI 0.0.14版本存在安全漏洞，该漏洞源于superagi.controllers.resources.upload存在任意文件覆盖漏洞，可能导致覆盖任意文件。

Description (English)

SuperAGI is an open source infrastructure application for SuperAGI open source. For building components, tools, frameworks and models to achieve open source AGI. The SuperAGI 0.014 version contains a security loophole that stems from the existence of arbitrary document coverage gaps that may lead to the coverage of arbitrary documents.

Hazard Level

High

Vulnerability Type

路径遍历

Affected Vendor

SuperAGI

Published

2025-07-22

Last Modified

2026-02-24

References

https://github.com/TransformerOptimus/SuperAGI https://github.com/TransformerOptimus/SuperAGI/pull/1463 https://www.gecko.security/blog/cve-2025-51475 https://nvd.nist.gov/vuln/detail/CVE-2025-51475 https://access.redhat.com/security/cve/cve-2025-51475