Stats Digest Feeds
โ† Back to all CVEs

CVE-2026-16084

HIGH NVD
CVSS Score 7.3
Severity HIGH
Published Jul 18, 2026
Vendor unknown

Description

A weakness has been identified in Sipeed PicoClaw up to 0.2.9. This impacts the function web_fetch of the file pkg/tools/integration/web.go. This manipulation causes server-side request forgery. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be used for attacks. Patch name: c15aac21fe05ee103a470e1104bc891754e83392. To fix this issue, it is recommended to deploy a patch.

References