CVE-2026-16119
MEDIUM SEVERITYCVSS Score & Metrics
Base Score
6.3 / 10
Vector String
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Description
A vulnerability was found in nextlevelbuilder GoClaw up to 3.13.2. This affects the function RequestApproval of the file internal/tools/exec_approval.go of the component WebSocket Approval Endpoint. Performing a manipulation results in incorrect authorization. The attack is possible to be carried out remotely. The exploit has been made public and could be used.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-285
Source
NVD
Vendor
nextlevelbuilder
Product
GoClaw
External References
- https://github.com/nextlevelbuilder/goclaw/
- https://github.com/nextlevelbuilder/goclaw/issues/1212
- https://github.com/nextlevelbuilder/goclaw/issues/1212#issuecomment-4760281066
- https://vuldb.com/cve/CVE-2026-16119
- https://vuldb.com/submit/856825
- https://vuldb.com/vuln/379828
- https://vuldb.com/vuln/379828/cti
Discussion (0)
Add Comment
No comments yet. Be the first!