VulnWatch VulnWatch
← Back to dashboard
High nvd · CVE-2026-43993

CVE-2026-43993: JunoClaw is an agentic AI platform built on Juno Network. Prior to 0.x.y-security-1, the WAVS bridge's computeDataVerify

Published May 12, 2026 CVSS 8.2

JunoClaw is an agentic AI platform built on Juno Network. Prior to 0.x.y-security-1, the WAVS bridge's computeDataVerify called fetch() on agent-supplied URLs without validating scheme, port, or resolved IP, resulting in an SSRF vulnerability. This vulnerability is fixed in 0.x.y-security-1.

SSRF Agentic / MCP

Affected AI Products

agentic
View original source
Get the weekly digest. Every Monday: top AI security stories of the week. Free.