{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-23T06:39:58.165","vulnerabilities":[{"cve":{"id":"CVE-2024-9431","sourceIdentifier":"security@huntr.dev","published":"2025-03-20T10:15:48.827","lastModified":"2025-10-15T13:15:59.380","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"In version v0.0.14 of transformeroptimus/superagi, there is an improper privilege management vulnerability. After logging into the system, users can change the passwords of other users, leading to potential account takeover."},{"lang":"es","value":"En la versión v0.0.14 de transformeroptimus/superagi, existe una vulnerabilidad de gestión de privilegios incorrecta. Tras iniciar sesión en el sistema, los usuarios pueden cambiar las contraseñas de otros usuarios, lo que podría provocar el robo de cuentas."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV30":[{"source":"security@huntr.dev","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security@huntr.dev","type":"Secondary","description":[{"lang":"en","value":"CWE-620"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:superagi:superagi:0.0.14:*:*:*:*:*:*:*","matchCriteriaId":"3C63CFCE-4FB2-47EC-A731-8C17458675D3"}]}]}],"references":[{"url":"https://huntr.com/bounties/9b33d7c1-ed0a-4f5b-a378-694570fd990b","source":"security@huntr.dev","tags":["Exploit","Third Party Advisory"]}]}}]}