CVE-2024-21552

CVSS V2 None CVSS V3 None
Description
All versions of `SuperAGI` are vulnerable to Arbitrary Code Execution due to unsafe use of the ‘eval’ function. An attacker could induce the LLM output to exploit this vulnerability and gain arbitrary code execution on the SuperAGI application server.
Overview
  • CVE ID
  • CVE-2024-21552
  • Assigner
  • snyk
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-07-22T14:18:30.939Z
  • Last Modified Date
  • 2024-07-22T14:18:30.939Z
History
Created Old Value New Value Data Type Notes
2024-07-23 13:19:06 Added to TrackCVE