{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata. Fed continuously.","feed_url":"https://feed.craftedsignal.io/products/transformeroptimus-superagi/feed.json","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cpes":[],"_cs_cves":[{"cvss":7.3,"id":"CVE-2026-6615"}],"_cs_exploited":false,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["TransformerOptimus SuperAGI"],"_cs_severities":["high"],"_cs_tags":["path-traversal","web-application","vulnerability"],"_cs_type":"advisory","_cs_vendors":["SuperAGI"],"content_html":"\u003cp\u003eTransformerOptimus SuperAGI version 0.0.14 is vulnerable to a path traversal vulnerability (CVE-2026-6615) in the Multipart Upload Handler component, specifically affecting the \u003ccode\u003eUpload\u003c/code\u003e function within the \u003ccode\u003esuperagi/controllers/resources.py\u003c/code\u003e file. This vulnerability allows a remote attacker to manipulate the \u003ccode\u003eName\u003c/code\u003e argument to read or write files outside of the intended directory. The vulnerability has been publicly disclosed, and proof-of-concept exploit code is available, increasing the risk of widespread exploitation. The vendor was contacted about the vulnerability but did not respond, suggesting that a patch may not be immediately available. This vulnerability poses a significant risk to systems running affected versions of SuperAGI.\u003c/p\u003e\n\u003ch2 id=\"attack-chain\"\u003eAttack Chain\u003c/h2\u003e\n\u003col\u003e\n\u003cli\u003eThe attacker identifies a vulnerable SuperAGI instance running version 0.0.14.\u003c/li\u003e\n\u003cli\u003eThe attacker crafts a malicious HTTP request targeting the Multipart Upload Handler.\u003c/li\u003e\n\u003cli\u003eWithin the request, the attacker manipulates the \u003ccode\u003eName\u003c/code\u003e argument with a path traversal payload, such as \u003ccode\u003e../../../../etc/passwd\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eThe SuperAGI application processes the request without proper sanitization of the \u003ccode\u003eName\u003c/code\u003e argument.\u003c/li\u003e\n\u003cli\u003eThe application attempts to write or read a file to the path specified in the manipulated \u003ccode\u003eName\u003c/code\u003e argument.\u003c/li\u003e\n\u003cli\u003eDue to the path traversal vulnerability, the attacker can read sensitive files, such as configuration files or system files.\u003c/li\u003e\n\u003cli\u003eAlternatively, the attacker can overwrite existing files or create new files in arbitrary locations, potentially leading to code execution.\u003c/li\u003e\n\u003cli\u003eThe attacker leverages the ability to read/write arbitrary files to compromise the SuperAGI instance or the underlying system.\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2 id=\"impact\"\u003eImpact\u003c/h2\u003e\n\u003cp\u003eSuccessful exploitation of this path traversal vulnerability (CVE-2026-6615) can allow attackers to read sensitive files from the SuperAGI server, potentially exposing credentials, API keys, or other confidential information. Attackers can also overwrite critical system files or upload malicious code, leading to arbitrary code execution and complete system compromise. Given the nature of SuperAGI as an AI automation platform, a successful attack could result in the theft or manipulation of sensitive data processed by the platform, as well as the deployment of malicious AI models.\u003c/p\u003e\n\u003ch2 id=\"recommendation\"\u003eRecommendation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMonitor web server logs for suspicious requests containing path traversal sequences (e.g., \u003ccode\u003e../\u003c/code\u003e, \u003ccode\u003e../../\u003c/code\u003e) in the \u003ccode\u003ecs-uri-query\u003c/code\u003e and \u003ccode\u003ecs-uri-stem\u003c/code\u003e fields, particularly targeting the \u003ccode\u003esuperagi/controllers/resources.py\u003c/code\u003e endpoint, using the Sigma rule provided below.\u003c/li\u003e\n\u003cli\u003eInspect file creation events for files created outside of the expected SuperAGI upload directory, especially if the process creating the files originates from the web server. Use the file creation Sigma rule.\u003c/li\u003e\n\u003cli\u003eImplement input validation and sanitization for the \u003ccode\u003eName\u003c/code\u003e argument in the Multipart Upload Handler to prevent path traversal attacks. Consider using a whitelist approach to restrict allowed characters and paths.\u003c/li\u003e\n\u003cli\u003eSince a patch is not available, consider deploying a web application firewall (WAF) rule to block requests containing path traversal attempts targeting the vulnerable endpoint.\u003c/li\u003e\n\u003cli\u003eMonitor network traffic for connections originating from the SuperAGI server to unusual or suspicious IP addresses, which could indicate post-exploitation activity.\u003c/li\u003e\n\u003c/ul\u003e\n","date_modified":"2024-01-03T12:00:00Z","date_published":"2024-01-03T12:00:00Z","id":"https://feed.craftedsignal.io/briefs/2024-01-03-superagi-path-traversal/","summary":"A path traversal vulnerability (CVE-2026-6615) exists in TransformerOptimus SuperAGI version 0.0.14, allowing remote attackers to read or write arbitrary files via manipulation of the 'Name' argument in the Multipart Upload Handler component.","title":"TransformerOptimus SuperAGI Path Traversal Vulnerability","url":"https://feed.craftedsignal.io/briefs/2024-01-03-superagi-path-traversal/"}],"language":"en","title":"CraftedSignal Threat Feed - TransformerOptimus SuperAGI","version":"https://jsonfeed.org/version/1.1"}