Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Sun, 19 Jul 2026 02:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A security flaw has been discovered in zevorn rt-claw up to 0.2.0. This affects the function tool_run_script_execute of the file claw/services/tools/script.c of the component Telegram-to-AI Tool Execution Flow. Performing a manipulation results in code injection. It is possible to initiate the attack remotely. The exploit has been released to the public and may be used for attacks. The project was informed of the problem early through an issue report but has not responded yet. | |
| Title | zevorn rt-claw Telegram-to-AI Tool Execution Flow script.c tool_run_script_execute code injection | |
| First Time appeared |
Zevorn
Zevorn rt-claw |
|
| Weaknesses | CWE-74 CWE-94 |
|
| CPEs | cpe:2.3:a:zevorn:rt-claw:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Zevorn
Zevorn rt-claw |
|
| References |
| |
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2026-07-19T01:45:11.609Z
Reserved: 2026-07-18T07:34:33.333Z
Link: CVE-2026-16204
No data.
No data.
No data.
OpenCVE Enrichment
No data.