CVE-2026-43991
HIGHJunoClaw: plugin-shell shell-injection bypass via substring blocklist
Title source: cnaDescription
JunoClaw is an agentic AI platform built on Juno Network. Prior to 0.x.y-security-1, substring-based blocklist in plugin-shell's command-safety check could be bypassed by adversarial argument constructions, allowing unauthorized command execution on the host when combined with the companion advisory. Pre-patch, the check was applied to the raw command string rather than the parsed first token. This vulnerability is fixed in 0.x.y-security-1.
References (2)
Core 2
Core References
X_Refsource_Misc x_refsource_misc
https://github.com/Dragonmonk111/junoclaw/commit/2bc54f6
X_Refsource_Confirm x_refsource_confirm
https://github.com/Dragonmonk111/junoclaw/security/advisories/GHSA-fvq5-79h6-952c
Scores
CVSS v3
8.4
EPSS
0.0017
EPSS Percentile
6.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-184
CWE-78
Status
published
Products (1)
Dragonmonk111/junoclaw
< v0.x.y-security-1
Published
May 12, 2026
Tracked Since
May 12, 2026