TransformerOptimus SuperAGI Missing Authentication Vulnerability in Vector Database Management Endpoint

A critical vulnerability has been identified in TransformerOptimus SuperAGI versions through 0.0.14. The issue resides in the Vector Database Management Endpoint, specifically within the 'get_vector_db_details', 'delete_vector_db', and 'update_vector_db' functions of 'superagi/controllers/vector_dbs.py'. These endpoints lack authentication, allowing unauthenticated users to access sensitive Vector DB configurations, including API keys for Pinecone, Qdrant, and Weaviate, delete Vector DBs along with all associated knowledge data, or modify Vector DB indices. The vulnerability can be exploited remotely, and a public exploit is available.

Impact

Exploitation of this vulnerability allows for unauthorized access to Vector DB management functions, leading to potential API key theft, unauthorized deletion of Vector DBs and their associated data, and disruption of vector search functionality by unauthorized modification of Vector DB indices.

Reproduction

The vulnerability can be reproduced by sending requests to the unauthenticated endpoints. First, list all Vector DBs to obtain their IDs. Then, access the 'db/details' endpoint for a specific Vector DB ID to retrieve its configuration details, including API keys. Finally, the 'delete' endpoint can be used to remove a Vector DB and all its associated data.