CVE-2026-10211 - Vulnerability Details

- AstrBotDevs AstrBot fs.py _normalize_rw_path authorization

Description

A vulnerability was determined in AstrBotDevs AstrBot 4.23.6. Affected by this issue is the function _normalize_rw_path of the file astrbot/core/tools/computer_tools/fs.py. This manipulation causes incorrect authorization. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.

Published: 2026-06-01

Score: 5.3 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

A flaw in AstrBotDevs AstrBot, version 4.23.6, impacts the _normalize_rw_path function in fs.py. The manipulation of this function causes incorrect authorization checks, effectively allowing an attacker to bypass intended permissions on file paths. This flaw is classified as a CWE‑285 (Improper Authorization) and CWE‑863 (Improper Control of System or Network Resources). Remote callers can exploit the vulnerability to read or write files they should not have access to, potentially modifying configuration, injecting malicious content, or escalating privileges within the bot environment. The exploit has been publicly disclosed, and no public remediation is indicated from the vendor.

Affected Systems

AstrBotDevs AstrBot version 4.23.6 is affected. No other product versions are currently listed as vulnerable.

Risk and Exploitability

The CVSS score is 5.3, indicating a moderate severity. The EPSS score is not available, and the vulnerability is not present in the CISA KEV catalog. Because the flaw can be triggered remotely and the vendor has not released a fix, an attacker with network access to the component that invokes _normalize_rw_path may successfully elevate privileges or manipulate files. The lack of an available patch increases the likelihood that exploitation attempts may succeed in environments that have not implemented mitigating controls.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

AstrBotDevs

AstrBot

affected

Version	Status	Constraints
`4.23.6`	affected	—

No data.

Vendor Product Confidence Versions

Astrbot

88%

Version	Status	Scheme	Platform
`4.23.6`	affected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Check for and upgrade to the latest AstrBot release that resolves the path normalization authorization flaw, if one is available.
Apply network restrictions to limit remote access to the component or endpoint that calls _normalize_rw_path, ensuring only trusted networks or hosts can invoke the function.
Enable application or system logging directed at file access events and monitor for anomalous attempts to read or write bypassed paths, so that potential exploitation can be detected and investigated early.

Generated by OpenCVE AI on June 1, 2026 at 02:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.00201.

Exploitation poc

Automatable no

Technical Impact partial

References

Link	Providers
https://gist.github.com/YLChen-007/b5e4671ff68e4f9001d977180ef4f081
https://vuldb.com/cve/CVE-2026-10211
https://vuldb.com/submit/821921
https://vuldb.com/vuln/367490
https://vuldb.com/vuln/367490/cti

History

Mon, 01 Jun 2026 15:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Mon, 01 Jun 2026 01:45:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability was determined in AstrBotDevs AstrBot 4.23.6. Affected by this issue is the function _normalize_rw_path of the file astrbot/core/tools/computer_tools/fs.py. This manipulation causes incorrect authorization. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.
Title		AstrBotDevs AstrBot fs.py _normalize_rw_path authorization
First Time appeared		Astrbot Astrbot astrbot
Weaknesses		CWE-285 CWE-863
CPEs		cpe:2.3:a:astrbot:astrbot::::::::
Vendors & Products		Astrbot Astrbot astrbot
References		https://gist.github.com/YLChen-007/b5e4671ff68e4f9001d977180ef4f081 https://vuldb.com/cve/CVE-2026-10211 https://vuldb.com/submit/821921 https://vuldb.com/vuln/367490 https://vuldb.com/vuln/367490/cti
Metrics		cvssV2_0 `{'score': 6.5, 'vector': 'AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}` cvssV3_0 `{'score': 6.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV3_1 `{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV4_0 `{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}`

Subscriptions

Astrbot Astrbot

MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2026-06-01T01:15:09.789Z

Updated: 2026-06-01T14:58:16.952Z

Reserved: 2026-05-31T07:14:05.629Z

Link: CVE-2026-10211

Vulnrichment

Updated: 2026-06-01T14:58:13.592Z

NVD

Status : Deferred

Published: 2026-06-01T02:16:17.713

Modified: 2026-06-01T15:15:37.293

Link: CVE-2026-10211

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-02T20:30:16Z

Weaknesses

CWE-285
Improper Authorization
CWE-863
Incorrect Authorization

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Exploitation poc

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object