CVE-2026-16120
MEDIUM
NVD
CVSS Score
6.3
Severity
MEDIUM
Published
Jul 18, 2026
Vendor
unknown
Description
A vulnerability was determined in nextlevelbuilder GoClaw up to 3.13.3-beta.3. This impacts the function matchesAllowlist/extractBin of the file internal/tools/exec_approval.go. Executing a manipulation can lead to incorrectly-resolved name. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized.