Description
A vulnerability was found in nextlevelbuilder GoClaw up to 3.13.2. This affects the function RequestApproval of the file internal/tools/exec_approval.go of the component WebSocket Approval Endpoint. Performing a manipulation results in incorrect authorization. The attack is possible to be carried out remotely. The exploit has been made public and could be used.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
History
Sat, 18 Jul 2026 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A vulnerability was found in nextlevelbuilder GoClaw up to 3.13.2. This affects the function RequestApproval of the file internal/tools/exec_approval.go of the component WebSocket Approval Endpoint. Performing a manipulation results in incorrect authorization. The attack is possible to be carried out remotely. The exploit has been made public and could be used. | |
| Title | nextlevelbuilder GoClaw WebSocket Approval Endpoint exec_approval.go RequestApproval authorization | |
| First Time appeared |
Nextlevelbuilder
Nextlevelbuilder goclaw |
|
| Weaknesses | CWE-285 CWE-863 |
|
| CPEs | cpe:2.3:a:nextlevelbuilder:goclaw:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Nextlevelbuilder
Nextlevelbuilder goclaw |
|
| References |
|
|
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2026-07-18T13:00:10.391Z
Reserved: 2026-07-17T15:56:44.538Z
Link: CVE-2026-16119
No data.
No data.
No data.
OpenCVE Enrichment
No data.