Vulnerability Details CVE-2026-13237
Incorrect Authorization vulnerability in Drupal AI Agents allows Forceful Browsing. This issue affects AI Agents versions: from 0.0.0 to 1.1.4, from 1.2.0 to 1.2.5, from 1.3.0 to 1.3.1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 6.4%
CVSS Severity
CVSS v3 Score 4.8
Products affected by CVE-2026-13237
-
cpe:2.3:a:artificial_intelligence_project:artificial_intelligence:1.2.0
-
cpe:2.3:a:artificial_intelligence_project:artificial_intelligence:1.2.1
-
cpe:2.3:a:artificial_intelligence_project:artificial_intelligence:1.2.2
-
cpe:2.3:a:artificial_intelligence_project:artificial_intelligence:1.2.3
-
cpe:2.3:a:artificial_intelligence_project:artificial_intelligence:1.2.4