CVE-2026-15318 | Sipeed PicoClaw up to 0.2.9 MQTT Channel mqtt.go client_id authorization (Issue 3068)
A vulnerability classified as critical has been found in Sipeed PicoClaw up to 0.2.9. Affected by this issue is some unknown functionality of the file pkg/channels/mqtt/mqtt.go of the component MQTT Channel Handler. This manipulation of the argument client_id causes incorrect authorization.
This vulnerability is tracked as CVE-2026-15318. The attack is possible to be carried out remotely. Moreover, an exploit is present.
The reported GitHub issue was closed automatically due to inactivity.VulDB Recent EntriesRead More