Threats Tagged 'cve-2026-16130'
View all threats tagged with 'cve-2026-16130'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-16130'
Click on any threat for detailed analysis and mitigation recommendations
A vulnerability was identified in nearai ironclaw up to 0.29.1. (CVE-2026-16130)CVE-2026-16130 0 A vulnerability exists in nearai ironclaw versions up to 0.29.1 in the validate_path function of src/tools/builtin/path_utils.rs within the write_file component. This vulnerability allows link following due to improper path validation. Exploitation requires local access. A patch identified by commit 369ff3d240cf3c0787b50e1e9f182e1a06c71255 is recommended to fix the issue. The vulnerability is classified as CWE-59 (Link Following). Join the discussion | GCVE Database | 07/18/2026, 18:30:21 UTC Added: 07/18/2026, 19:25:11 UTC |
CVE-2026-16130: Link Following in nearai ironclawCVE-2026-16130 0 A vulnerability was identified in nearai ironclaw up to 0.29.1. The affected element is the function validate_path of the file src/tools/builtin/path_utils.rs of the component write_file. The manipulation leads to link following. Local access is required to approach this attack. The exploit is publicly available and might be used. The identifier of the patch is 369ff3d240cf3c0787b50e1e9f182e1a06c71255. It is recommended to apply a patch to fix this issue. Join the discussion | CVE Database V5 | 07/18/2026, 17:15:10 UTC Added: 07/18/2026, 17:42:30 UTC |
Showing 1 to 2 of 2 results