Skip to main content

Sipeed PicoClaw CVE-2026-15319

| EUVDEUVD-2026-42775 MEDIUM
Improper Access Control (CWE-284)
2026-07-10 VulDB GHSA-f9rq-5867-x4mq
5.5
CVSS 4.0 · Vendor: VulDB
Share

Severity by source

Vendor (VulDB) PRIMARY
5.5 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vuln.today AI
7.3 HIGH

Network-accessible IP allowlist bypass with no privileges or interaction required; impact limited to low C/I/A with no scope change.

3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Primary rating from Vendor (VulDB).

CVSS VectorVendor: VulDB

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

2
CVSS changed
Jul 10, 2026 - 03:22 NVD
6.9 (MEDIUM) 5.5 (MEDIUM)
Analysis Generated
Jul 10, 2026 - 02:44 vuln.today

DescriptionCVE.org

A security vulnerability has been detected in Sipeed PicoClaw up to 0.2.9. This affects the function IPAllowlist of the file web/backend/middleware/access_control.go of the component Launcher. Such manipulation leads to improper access controls. The attack may be performed from remote. The exploit has been disclosed publicly and may be used. The name of the patch is 3126. A patch should be applied to remediate this issue.

AnalysisAI

Improper access control in Sipeed PicoClaw up to version 0.2.9 allows remote unauthenticated attackers to bypass the IP allowlist enforced by the Launcher's web backend middleware. The flaw resides in the IPAllowlist function within web/backend/middleware/access_control.go, which fails to correctly enforce source-address restrictions, permitting unauthorized network access to protected endpoints. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Identify exposed PicoClaw web interface
Delivery
Send crafted HTTP request with spoofed/malformed source IP
Exploit
Bypass IPAllowlist middleware check
Execution
Access restricted Launcher endpoints
Impact
Read or modify Launcher configuration

Vulnerability AssessmentAI

Exploitation The PicoClaw web backend Launcher interface must be network-accessible (i.e., listening on a network interface reachable by the attacker). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 4.0 base score of 6.9 with VC:L/VI:L/VA:L reflects limited but real impact: an attacker gains unauthorized access to web-accessible endpoints that would otherwise be restricted by the IP allowlist. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario A remote unauthenticated attacker sends crafted HTTP requests to the PicoClaw Launcher web interface from an IP address that should be blocked by the configured allowlist. By exploiting the logic flaw in the IPAllowlist middleware function - potentially through header injection or IP representation manipulation - the attacker bypasses the access restriction and reaches protected backend endpoints, gaining unauthorized read and write access to Launcher functionality. …
Remediation Apply the upstream fix from GitHub pull request #3126 (https://github.com/sipeed/picoclaw/pull/3126) once it is merged and a tagged release is published; a formally released patched version number has not been independently confirmed at time of analysis. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-15319 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy