CVE-2026-15621

Summary

A vulnerability was detected in mosaxiv clawlet up to 0.2.10. This impacts the function read_file/write_file/edit_file of the file tools/fs_ops.go of the component File Tools. Performing a manipulation results in link following. The attack needs to be approached locally. The reported GitHub issue was closed with the label "not planned".

Affected Software

VendorProductVersion RangeStatus
mosaxivclawlet0.2.0affected
mosaxivclawlet0.2.1affected
mosaxivclawlet0.2.2affected
mosaxivclawlet0.2.3affected
mosaxivclawlet0.2.4affected
mosaxivclawlet0.2.5affected
mosaxivclawlet0.2.6affected
mosaxivclawlet0.2.7affected
mosaxivclawlet0.2.8affected
mosaxivclawlet0.2.9affected
mosaxivclawlet0.2.10affected

Weaknesses

  • CWE-59: Link Following

References