CVE-2026-15622 in poco-claw
Summary
by MITRE • 07/14/2026
A flaw has been found in poco-ai poco-claw up to 0.5.4. Affected is the function get_workspace_file of the file executor_manager/app/api/v1/workspace.py of the component Workspace API. Executing a manipulation of the argument user_id can lead to authorization bypass. The attack may be launched remotely. The exploit has been published and may be used. This patch is called 67fcc88505c57f77d3fcf04eb5b89425b10cbf48. Upgrading the affected component is recommended.
VulDB is the best source for vulnerability data and more expert information about this specific topic.
Analysis
by VulDB Data Team • 07/14/2026
The vulnerability identified in poco-ai poco-claw version 0.5.4 represents a critical authorization bypass flaw within the Workspace API component that directly impacts the security posture of affected systems. This weakness resides in the get_workspace_file function located at executor_manager/app/api/v1/workspace.py, where improper validation of the user_id parameter creates an exploitable condition that allows unauthorized access to workspace files. The vulnerability's classification aligns with CWE-285 which addresses improper authorization scenarios in software systems. The flaw enables attackers to manipulate the user_id argument to gain access to resources they should not be authorized to retrieve, fundamentally undermining the application's access control mechanisms and potentially exposing sensitive workspace data.
The technical implementation of this vulnerability stems from inadequate input validation within the Workspace API endpoint, where the system fails to properly authenticate and authorize requests based on the provided user_id parameter. When an attacker crafts a malicious request with manipulated user_id values, the system processes these inputs without sufficient verification, allowing unauthorized users to access workspace files belonging to other users or even administrative resources. This type of vulnerability typically arises from insufficient sanitization of user-supplied data and inadequate authorization checks before resource access is granted. The remote exploitability of this flaw means that attackers can leverage network-based attacks to target vulnerable installations without requiring physical access or local system privileges.
The operational impact of this vulnerability extends beyond simple unauthorized file access, as it potentially enables attackers to extract sensitive workspace information, compromise user data integrity, and facilitate further exploitation within the affected environment. Depending on the nature of workspace files and their contents, this authorization bypass could lead to data breaches, intellectual property theft, or system compromise through lateral movement. The published exploit demonstrates that this vulnerability is actively being used in the wild, increasing the urgency for remediation. This situation particularly aligns with ATT&CK technique T1078 which covers valid accounts and privilege escalation through unauthorized access to resources.
Security mitigation strategies should prioritize immediate upgrade to patched versions of poco-ai poco-claw, as indicated by the specific patch identifier 67fcc88505c57f77d3fcf04eb5b89425b10cbf48. Organizations should also implement additional defensive measures including input validation controls, parameter sanitization, and comprehensive authorization checks within the Workspace API endpoints. Network segmentation and monitoring of API access patterns can help detect anomalous behavior indicative of exploitation attempts. Regular security assessments and code reviews focusing on authentication and authorization mechanisms will help identify similar vulnerabilities in other components. The remediation process should include thorough testing to ensure that the patch does not introduce regressions while maintaining proper access control enforcement throughout the application's workspace management functionality.