CVE-2026-10219 | nextlevelbuilder GoClaw up to 3.11.3 write_file Tool fsbridge.go FsBridge.WriteFile os command injection (Issue 1121)

A vulnerability marked as critical has been reported in nextlevelbuilder GoClaw up to 3.11.3. This impacts the function FsBridge.WriteFile of the file internal/sandbox/fsbridge.go of the component write_file Tool. Performing a manipulation results in os command injection.

This vulnerability is reported as CVE-2026-10219. The attack is possible to be carried out remotely. Moreover, an exploit is present.

The pull request to fix this issue awaits acceptance.VulDB Recent EntriesRead More