Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Sat, 18 Jul 2026 14:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A security flaw has been discovered in nextlevelbuilder GoClaw up to 3.13.2. Affected by this vulnerability is the function extractBin/RequestApproval/matchesAllowlist of the file internal/tools/exec_approval.go. The manipulation results in incorrect authorization. The exploit has been released to the public and may be used for attacks. | |
| Title | nextlevelbuilder GoClaw exec_approval.go matchesAllowlist authorization | |
| First Time appeared |
Nextlevelbuilder
Nextlevelbuilder goclaw |
|
| Weaknesses | CWE-285 CWE-863 |
|
| CPEs | cpe:2.3:a:nextlevelbuilder:goclaw:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Nextlevelbuilder
Nextlevelbuilder goclaw |
|
| References |
|
|
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2026-07-18T14:30:09.020Z
Reserved: 2026-07-17T15:56:57.968Z
Link: CVE-2026-16122
No data.
No data.
No data.
OpenCVE Enrichment
No data.