A security vulnerability has been detected in nextlevelbuilder GoClaw up to 3.13.0-beta.2. Impacted is the function MethodRouter.Handle of the file internal/gateway/router.go of the component WebSocket RPC Handler. Such manipulation leads to incorrect authorization. The attack may be launched remotely. The exploit has been disclosed publicly and may be used. The project was informed of the problem early through an issue report.
Metrics
Affected Vendors & Products
References
History
Tue, 07 Jul 2026 03:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Sun, 05 Jul 2026 06:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A security vulnerability has been detected in nextlevelbuilder GoClaw up to 3.13.0-beta.2. Impacted is the function MethodRouter.Handle of the file internal/gateway/router.go of the component WebSocket RPC Handler. Such manipulation leads to incorrect authorization. The attack may be launched remotely. The exploit has been disclosed publicly and may be used. The project was informed of the problem early through an issue report. | |
| Title | nextlevelbuilder GoClaw WebSocket RPC router.go MethodRouter.Handle authorization | |
| First Time appeared |
Nextlevelbuilder
Nextlevelbuilder goclaw |
|
| Weaknesses | CWE-285 CWE-863 |
|
| CPEs | cpe:2.3:a:nextlevelbuilder:goclaw:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Nextlevelbuilder
Nextlevelbuilder goclaw |
|
| References |
| |
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published: 2026-07-05T05:45:07.965Z
Updated: 2026-07-07T02:43:44.690Z
Reserved: 2026-07-04T07:50:37.826Z
Link: CVE-2026-14716
Updated: 2026-07-07T02:43:38.974Z
No data.
No data.