CVE-2026-40525
published 2026-04-17CVE-2026-40525: OpenViking prior to version 0.3.9 contains an authentication bypass vulnerability in the VikingBot OpenAPI HTTP route surface where the authentication check…
PriorityP265critical9.1CVSS 3.1
AVNACLPRNUINSUCHIHAN
EPSS
0.57%
42.9th percentile
OpenViking prior to version 0.3.9 contains an authentication bypass vulnerability in the VikingBot OpenAPI HTTP route surface where the authentication check fails open when the api_key configuration value is unset or empty. Remote attackers with network access to the exposed service can invoke privileged bot-control functionality without providing a valid X-API-Key header, including submitting attacker-controlled prompts, creating or using bot sessions, and accessing downstream tools, integrations, secrets, or data accessible to the bot.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| volcengine | openviking | < 0.3.9 | 0.3.9 |
| volcengine | openviking | >= 0 < 0.3.9 | 0.3.9 |
CVSS provenance
nvdv3.19.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
nvdv4.09.1CRITICALCVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-jgq2-vq69-gr6h: OpenViking prior to commit c7bb167 contains an authentication bypass vulnerability in the VikingBot OpenAPI HTTP route surface where the authenticatio
ghsa_unreviewed·2026-04-17
CVE-2026-40525 [CRITICAL] CWE-636 GHSA-jgq2-vq69-gr6h: OpenViking prior to commit c7bb167 contains an authentication bypass vulnerability in the VikingBot OpenAPI HTTP route surface where the authenticatio
OpenViking prior to commit c7bb167 contains an authentication bypass vulnerability in the VikingBot OpenAPI HTTP route surface where the authentication check fails open when the api_key configuration value is unset or empty. Remote attackers with network access to the exposed service can invoke privileged bot-control functionality without providing a valid X-API-Key header, including submitting attacker-controlled prompts, creating or using bot sessions, and accessing downstream tools, integrations, secrets, or data accessible to the bot.
GHSA
OpenViking: Unauthenticated remote bot control via OpenAPI HTTP routes
ghsa·2026-04-17
CVE-2026-40525 [CRITICAL] CWE-636 OpenViking: Unauthenticated remote bot control via OpenAPI HTTP routes
OpenViking: Unauthenticated remote bot control via OpenAPI HTTP routes
OpenViking prior to commit c7bb167 contains an authentication bypass vulnerability in the VikingBot OpenAPI HTTP route surface where the authentication check fails open when the api_key configuration value is unset or empty. Remote attackers with network access to the exposed service can invoke privileged bot-control functionality without providing a valid X-API-Key header, including submitting attacker-controlled prompts, creating or using bot sessions, and accessing downstream tools, integrations, secrets, or data accessible to the bot.
VulDB
volcengine OpenViking up to 0.3.8 Exposed Service api_key failing open
vuldb·2026-04-17·CVSS 9.1
CVE-2026-40525 [CRITICAL] volcengine OpenViking up to 0.3.8 Exposed Service api_key failing open
A vulnerability classified as critical has been found in volcengine OpenViking up to 0.3.8. This affects an unknown function of the component Exposed Service. The manipulation of the argument api_key leads to not failing securely.
This vulnerability is documented as CVE-2026-40525. The attack can be initiated remotely. There is not any exploit available.
To fix this issue, it is recommended to deploy a patch.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-04-17
Published