Back to CVE List

CVE-2026-16120

MEDIUM SEVERITY

CVSS Score & Metrics

Base Score
6.3 / 10
Vector String
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Vulnerability Description

A vulnerability was determined in nextlevelbuilder GoClaw up to 3.13.3-beta.3. This impacts the function matchesAllowlist/extractBin of the file internal/tools/exec_approval.go. Executing a manipulation can lead to incorrectly-resolved name. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-706
Source
NVD
Vendor
nextlevelbuilder
Product
GoClaw

External References

Discussion (0)

Add Comment

No comments yet. Be the first!