CVE-2026-8112
MEDIUM8421bit MiniClaw kernel.ts executeCognitivePulse os command injection
Title source: cnaDescription
A vulnerability was found in 8421bit MiniClaw up to 223c16a1088e138838dcbd18cd65a37c35ac5a84. Affected is the function executeCognitivePulse of the file src/kernel.ts. Performing a manipulation results in os command injection. It is possible to initiate the attack remotely. The exploit has been made public and could be used. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available. The patch is named 028f62216dee9f64833d0f1cfda7c217067ceba8. To fix this issue, it is recommended to deploy a patch.
References (7)
Core 7
Core References
Vdb Entry, Technical Description vdb-entry
technical-description
VDB-361900 | 8421bit MiniClaw kernel.ts executeCognitivePulse os command injection
https://vuldb.com/vuln/361900
Signature, Permissions Required signature
permissions-required
VDB-361900 | CTI Indicators (IOB, IOC, TTP, IOA)
https://vuldb.com/vuln/361900/cti
Third Party Advisory third-party-advisory
Submit #808166 | 8421bit MiniClaw 0 OS Command Injection
https://vuldb.com/submit/808166
Exploit exploit
issue-tracking
https://github.com/8421bit/MiniClaw/issues/4
Patch issue-tracking
patch
https://github.com/8421bit/MiniClaw/pull/7
Product product
https://github.com/8421bit/MiniClaw/
Scores
CVSS v3
6.3
EPSS
0.0294
EPSS Percentile
85.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-77
CWE-78
Status
published
Products (2)
8421bit/miniclaw
< 2026-04-29
8421bit/MiniClaw
223c16a1088e138838dcbd18cd65a37c35ac5a84
Published
May 07, 2026
Tracked Since
May 08, 2026