Description
JunoClaw is an agentic AI platform built on Juno Network. Prior to 0.x.y-security-1, the WAVS bridge's computeDataVerify called fetch() on agent-supplied URLs without validating scheme, port, or resolved IP, resulting in an SSRF vulnerability. This vulnerability is fixed in 0.x.y-security-1.
Published: 2026-05-12
Score: 8.2 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The issue is a Server‑Side Request Forgery where JunoClaw’s WAVS bridge calls fetch() on URLs supplied by an agent without checking the URL scheme, port, or resolved IP. This flaw is a CWE‑918 weakness that enables an attacker who can dictate the agent‑provided URL to trigger an outbound HTTP request from the host. The consequence is that the platform may inadvertently contact internal or cloud‑metadata services, leaking sensitive configuration, credentials, or other internal data and providing a foothold for further compromise. The standard description provided in the advisory notes this as a high‑severity flaw but does not imply remote code execution or denial of service on its own.

Affected Systems

Dragonmonk111’s JunoClaw platform, releases before 0.x.y-security‑1, are affected. The vulnerability was fixed by the patch symbolized by the v0.x.y‑security‑1 release and all newer versions.

Risk and Exploitability

With a CVSS score of 8.2 the risk is assessed as high. EPSS is not available, but the absence of mitigations in the vulnerable releases means that exploitation would only require an agent capable of providing an arbitrary URL. The vulnerability is not catalogued in CISA KEV. The attack path is inferred to be an attacker‑controlled agent that can supply a crafted URL to computeDataVerify, causing the system to resolve and request that URL without restriction.

Generated by OpenCVE AI on May 12, 2026 at 17:57 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade JunoClaw to the 0.x.y-security-1 release or later
  • If upgrading is not immediately possible, block outbound traffic from JunoClaw to internal IP ranges and the cloud metadata endpoint using network ACL or firewall rules
  • Implement server‑side validation that rejects non‑HTTPS URLs, limits to standard ports, and checks resolved IP addresses before network fetches as an interim control

Generated by OpenCVE AI on May 12, 2026 at 17:57 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 13 May 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 13 May 2026 11:00:00 +0000

Type Values Removed Values Added
First Time appeared Dragonmonk111
Dragonmonk111 junoclaw
Vendors & Products Dragonmonk111
Dragonmonk111 junoclaw

Tue, 12 May 2026 16:45:00 +0000

Type Values Removed Values Added
Description JunoClaw is an agentic AI platform built on Juno Network. Prior to 0.x.y-security-1, the WAVS bridge's computeDataVerify called fetch() on agent-supplied URLs without validating scheme, port, or resolved IP, resulting in an SSRF vulnerability. This vulnerability is fixed in 0.x.y-security-1.
Title JunoClaw: SSRF in WAVS computeDataVerify allows cloud-metadata and internal-service access
Weaknesses CWE-918
References
Metrics cvssV3_1

{'score': 8.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:L'}

Subscriptions

Dragonmonk111 Junoclaw
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-05-13T14:35:30.160Z

Reserved: 2026-05-04T20:24:31.917Z

Link: CVE-2026-43993

cve-icon Vulnrichment

Updated: 2026-05-13T14:35:24.614Z

cve-icon NVD

Status : Deferred

Published: 2026-05-12T17:16:21.380

Modified: 2026-05-13T17:00:37.097

Link: CVE-2026-43993

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-13T10:38:37Z

Weaknesses