A security flaw has been discovered in zevorn rt-claw up to 0.2.0. This affects the function tool_run_script_execute of the file claw/services/tools/script.c of the component Telegram-to-AI Tool Execution Flow. Performing a manipulation results in code injection. It is possible to initiate the attack remotely. The exploit has been released to the public and may be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.
Metrics
Affected Vendors & Products
References
History
Sun, 19 Jul 2026 02:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A security flaw has been discovered in zevorn rt-claw up to 0.2.0. This affects the function tool_run_script_execute of the file claw/services/tools/script.c of the component Telegram-to-AI Tool Execution Flow. Performing a manipulation results in code injection. It is possible to initiate the attack remotely. The exploit has been released to the public and may be used for attacks. The project was informed of the problem early through an issue report but has not responded yet. | |
| Title | zevorn rt-claw Telegram-to-AI Tool Execution Flow script.c tool_run_script_execute code injection | |
| First Time appeared |
Zevorn
Zevorn rt-claw |
|
| Weaknesses | CWE-74 CWE-94 |
|
| CPEs | cpe:2.3:a:zevorn:rt-claw:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Zevorn
Zevorn rt-claw |
|
| References |
| |
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2026-07-19T01:45:11.609Z
Reserved: 2026-07-18T07:34:33.333Z
Link: CVE-2026-16204
No data.
No data.
No data.
OpenCVE Enrichment
No data.