CVE-2025-51472 — MEDIUM (6.5)

Vulnerability Description

Code Injection in AgentTemplate.eval_agent_config in TransformerOptimus SuperAGI 0.0.14 allows remote attackers to execute arbitrary Python code via malicious values in agent template configurations such as the goal, constraints, or instruction field, which are evaluated using eval() without validation during template loading or updates.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Superagi	Superagi	0.0.14

Related Weaknesses (CWE)

CWE-77

References

https://github.com/TransformerOptimus/SuperAGIProduct
https://github.com/TransformerOptimus/SuperAGI/pull/1461ExploitIssue Tracking
https://www.gecko.security/blog/cve-2025-51472ExploitThird Party Advisory

FAQ

What is CVE-2025-51472?

CVE-2025-51472 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Code Injection in AgentTemplate.eval_agent_config in TransformerOptimus SuperAGI 0.0.14 allows remote attackers to execute arbitrary Python code via malicious values in agent template configurations s...

How severe is CVE-2025-51472?

CVE-2025-51472 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-51472?

Check the references section above for vendor advisories and patch information. Affected products include: Superagi Superagi.