关键漏洞信息 漏洞概述 名称: Sim Studio AI - MongoDB SSRF and Arbitrary Document Deletion 评级: Critical 漏洞详情 CVE ID: CVE-2026-3431 Tenable Advisory ID: TRA-2026-12 Credit: Joshua Martinelle 风险信息 CVSSv3 Base / Temporal Score: 9.8 CVSSv3 Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSSv4 Base Score: 9.3 CVSSv4 Vector: AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N 受影响产品 SimStudio < 0.5.74 风险因素 Critical 咨询时间线 初始联系: Jan 27, 2026 - 报告提交至 security@sim.ai 第二次联系尝试: Feb 04, 2026 厂商确认修复: Feb 04, 2026 - v0.5.74 初始发布: March 02, 2026 简介 The MongoDB tool endpoints accept arbitrary connection parameters from the caller without authentication or host restrictions. An attacker can leverage these endpoints to connect to any reachable MongoDB instance and perform arbitrary operations, potentially leading to data exposure, modification, and deletion.