Zurück zur CVE-Übersicht
CVE-2026-15620
MEDIUM(6.3)CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Risk Signal Score26/100 — MITTEL
- CVSS 6.3 — Mittel
- Weniger als 24 Stunden alt
Beschreibung
A security vulnerability has been detected in mosaxiv clawlet up to 0.2.10. This affects the function tools.webFetch of the file tools/tool_web_fetch.go. Such manipulation leads to server-side request forgery. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. The reported GitHub issue was closed with the label "not planned".