TransformerOptimus SuperAGI Authorization Bypass Vulnerability in Agent Management

An authorization bypass vulnerability has been identified in TransformerOptimus SuperAGI versions through 0.0.14. The issue resides in the agent management functions within the file superagi/controllers/agent.py. The vulnerability allows authenticated users to manipulate the agent_id parameter, bypassing authorization checks and accessing or modifying data belonging to other users' organizations. This flaw can be exploited remotely, with a public proof-of-concept available.

Impact

Exploitation of this vulnerability allows for unauthorized deletion of agents, which disrupts all associated executions and scheduled tasks. Additionally, it enables unauthorized access to sensitive schedule data from other users' agents.

Reproduction

To reproduce this vulnerability, authenticate as a user and obtain a JWT token. Then, use this token to make requests to the vulnerable endpoints, such as deleting an agent or stopping a scheduled task, by manipulating the agent_id parameter to target a victim's data.