High severity8.2NVD Advisory· Published May 12, 2026· Updated May 13, 2026
CVE-2026-43993
CVE-2026-43993
Description
JunoClaw is an agentic AI platform built on Juno Network. Prior to 0.x.y-security-1, the WAVS bridge's computeDataVerify called fetch() on agent-supplied URLs without validating scheme, port, or resolved IP, resulting in an SSRF vulnerability. This vulnerability is fixed in 0.x.y-security-1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <0.x.y-security-1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.