CVE-2026-16015
Deferred Deferred - Pending Action

Authentication Bypass in poco-ai poco-claw

Vulnerability report for CVE-2026-16015, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-17

Last updated on: 2026-07-17

Assigner: VulDB

Description

A vulnerability was determined in poco-ai poco-claw up to 0.5.4. This vulnerability affects the function create_task of the file executor_manager/app/api/v1/tasks.py of the component executor_manager API. Executing a manipulation can lead to missing authentication. The exploit has been publicly disclosed and may be utilized. Upgrading to version 0.5.7 is able to resolve this issue. This patch is called 67fcc88505c57f77d3fcf04eb5b89425b10cbf48. It is recommended to upgrade the affected component.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-17
Last Modified
2026-07-17
Generated
2026-07-17
AI Q&A
2026-07-17
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 4 associated CPEs
Vendor Product Version / Range
poco-ai poco-claw to 0.5.5 (exc)
poco-ai poco-agent to 0.5.5 (exc)
poco-ai poco-claw 0.5.7
poco-ai poco-agent 0.5.7

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-306 The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.
CWE-287 When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

CVE-2026-16015 is an authorization vulnerability in Poco's executor-manager component. It allows unauthenticated attackers to impersonate any user and access admin-only runtime secrets. The flaw exists in the /api/v1/tasks endpoint, which accepts a user_id parameter without proper authentication. This untrusted user ID is forwarded as a trusted internal header, enabling attackers to create backend sessions under spoofed identities and retrieve privileged resources.

Detection Guidance

Check if your poco-claw or poco-agent version is <= 0.5.4 by running: docker inspect <container_name> | grep poco-claw or poco-agent. Verify if the /api/v1/tasks endpoint is exposed and accessible without authentication. Test with curl -X POST http://<host>:<port>/api/v1/tasks -H 'Content-Type: application/json' -d '{"user_id":"admin"}' to see if it accepts requests.

Impact Analysis

This vulnerability allows attackers to impersonate users, create unauthorized tasks, and access sensitive admin-only secrets. If you use affected versions of poco-ai/poco-agent (<=0.5.4), attackers could execute tasks as any user, potentially stealing data or escalating privileges. Upgrading to version 0.5.7 or later mitigates this risk.

Compliance Impact

This vulnerability could lead to unauthorized access to sensitive data, violating GDPR's data protection principles and HIPAA's access controls. Organizations using affected versions may face compliance failures due to insufficient authentication and authorization mechanisms, potentially resulting in data breaches and regulatory penalties.

Mitigation Strategies

Upgrade poco-claw and poco-agent to version 0.5.7 or later immediately. Apply the patch commit 67fcc88505c57f77d3fcf04eb5b89425b10cbf48. Ensure the /api/v1/tasks endpoint is not publicly exposed and requires X-Internal-Token or Bearer tokens for authentication.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-16015. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart