Medium severity4.7NVD Advisory· Published Jun 2, 2026· Updated Jun 2, 2026
CVE-2026-10583
CVE-2026-10583
Description
A security vulnerability has been detected in nextlevelbuilder GoClaw up to 3.11.3. Affected by this issue is the function Import of the file internal/http/tts_config.go of the component TTS Configuration Endpoint. The manipulation leads to server-side request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used. The project tagged the reported issue as bug.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=3.11.3+ 1 more
- (no CPE)range: <=3.11.3
- (no CPE)range: <=3.11.3
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.