CVE-2026-9453
Published: 25 May 2026
Summary
CVE-2026-9453 is a medium-severity Injection (CWE-74) vulnerability. Its CVSS base score is 5.5 (Medium).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 28.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
Deeper analysis
A vulnerability has been identified in FoundDream miniclawd up to commit 2d65665046e2222eeea76cafc8570ed546a8c125, specifically in the SkillsLoader component within the file /src/application/skills-loader.ts. Manipulation of the requires.bins argument allows command injection, classified under CWE-74 and CWE-77. The product follows a rolling release model, so no discrete version numbers are available for affected or patched builds. The issue was reported via GitHub but has received no response from maintainers.
The flaw can be exploited remotely by unauthenticated attackers who supply crafted input to the affected argument, resulting in execution of arbitrary commands with limited impacts on confidentiality, integrity, and availability. Public exploit code is already available, and the CVSS 4.0 score of 5.5 reflects network attack vector, low complexity, and no required privileges or user interaction.
Reference materials point to the project repository and an associated GitHub issue, but contain no details on patches or workarounds. The EPSS score remains flat at 0.0218 with no material increase observed after disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-31671
Vulnerability details
A vulnerability was detected in FoundDream miniclawd up to 2d65665046e2222eeea76cafc8570ed546a8c125. This affects the function which of the file /src/application/skills-loader.ts of the component SkillsLoader. Performing a manipulation of the argument requires.bins results in command injection. The attack may be initiated remotely.…
more
The exploit is now public and may be used. This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available. The project was informed of the problem early through an issue report but has not responded yet.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Remote command injection in a public-facing application component directly enables T1190 exploitation and arbitrary OS command execution via T1059.
CVEs Like This One
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Developer assessments and testing (including injection-focused techniques) identify improper neutralization of special elements, and the verifiable flaw remediation corrects them pre-deployment.
Identifies indicators of injection attacks (command, SQL, LDAP, etc.) via anomaly and attack monitoring.