Authentication Bypass in VikingBot OpenAPI of OpenViking by Volcengine
CVE-2026-40525

9.1CRITICAL

Key Information:

Vendor

Volcengine

Status
Openviking
Vendor
CVE Published:
17 April 2026

What is CVE-2026-40525?

OpenViking before commit c7bb167 exposes a significant security flaw within its VikingBot OpenAPI, where an authentication check can be bypassed. This issue arises when the api_key configuration is either unset or empty, allowing remote attackers with network access to leverage privileged functionalities without proper authorization. Consequently, they can submit arbitrary prompts, create or manipulate bot sessions, and gain unauthorized access to downstream tools, integrations, secrets, and data associated with the bot.

Affected Version(s)

OpenViking 0 <= 0.3.8

OpenViking c7bb1676f4d037609f041bf39e4e2bd52e8f9820

References

https://github.com/volcengine/OpenViking/pull/1447
issue-tracking
https://github.com/volcengine/OpenViking/commit/c7bb1676f...
patch
https://www.vulncheck.com/advisories/openviking-authentic...
third-party-advisory

CVSS V4

Score:
9.1
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Chia Min Jun Lennon
.