Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2026-8113
PUBLISHED
More InfoOfficial Page
Assigner-VulDB
Assigner Org ID-1af790b2-7ee1-4545-860a-a788eba489b5
View Known Exploited Vulnerability (KEV) details
Published At-07 May, 2026 | 21:15
Updated At-08 May, 2026 | 20:23
Rejected At-
▼CVE Numbering Authority (CNA)
8421bit MiniClaw executeSkillScript kernel.ts isPathInside path traversal

A vulnerability was determined in 8421bit MiniClaw up to 43905b934cf76489ab28e4d17da28ee97970f91f. Affected by this vulnerability is the function isPathInside of the file src/kernel.ts of the component executeSkillScript. Executing a manipulation can lead to path traversal. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be utilized. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available. This patch is called e8bd4e17e9428260f2161378356affc5ce90d6ed. It is advisable to implement a patch to correct this issue.

Affected Products
Vendor
8421bit
Product
MiniClaw
Modules
  • executeSkillScript
Versions
Affected
  • 43905b934cf76489ab28e4d17da28ee97970f91f
Problem Types
TypeCWE IDDescription
CWECWE-22Path Traversal
Type: CWE
CWE ID: CWE-22
Description: Path Traversal
Metrics
VersionBase scoreBase severityVector
4.05.3MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P
3.14.3MEDIUM
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C
3.04.3MEDIUM
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C
2.04.0N/A
AV:N/AC:L/Au:S/C:P/I:N/A:N/E:POC/RL:OF/RC:C
Version: 4.0
Base score: 5.3
Base severity: MEDIUM
Vector:
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P
Version: 3.1
Base score: 4.3
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C
Version: 3.0
Base score: 4.3
Base severity: MEDIUM
Vector:
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C
Version: 2.0
Base score: 4.0
Base severity: N/A
Vector:
AV:N/AC:L/Au:S/C:P/I:N/A:N/E:POC/RL:OF/RC:C
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
reporter
ybdesire (VulDB User)
Timeline
EventDate
Advisory disclosed2026-05-07 00:00:00
VulDB entry created2026-05-07 02:00:00
VulDB entry last update2026-05-07 18:38:19
Event: Advisory disclosed
Date: 2026-05-07 00:00:00
Event: VulDB entry created
Date: 2026-05-07 02:00:00
Event: VulDB entry last update
Date: 2026-05-07 18:38:19
Replaced By
Rejected Reason
References
HyperlinkResource
https://vuldb.com/vuln/361901
vdb-entry
technical-description
https://vuldb.com/vuln/361901/cti
signature
permissions-required
https://vuldb.com/submit/808167
third-party-advisory
https://github.com/8421bit/MiniClaw/issues/5
exploit
issue-tracking
https://github.com/8421bit/MiniClaw/pull/8
issue-tracking
patch
https://github.com/8421bit/MiniClaw/commit/e8bd4e17e9428260f2161378356affc5ce90d6ed
patch
https://github.com/8421bit/MiniClaw/
product
Hyperlink: https://vuldb.com/vuln/361901
Resource:
vdb-entry
technical-description
Hyperlink: https://vuldb.com/vuln/361901/cti
Resource:
signature
permissions-required
Hyperlink: https://vuldb.com/submit/808167
Resource:
third-party-advisory
Hyperlink: https://github.com/8421bit/MiniClaw/issues/5
Resource:
exploit
issue-tracking
Hyperlink: https://github.com/8421bit/MiniClaw/pull/8
Resource:
issue-tracking
patch
Hyperlink: https://github.com/8421bit/MiniClaw/commit/e8bd4e17e9428260f2161378356affc5ce90d6ed
Resource:
patch
Hyperlink: https://github.com/8421bit/MiniClaw/
Resource:
product
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found