PatchSiren cyber security CVE debrief
CVE-2026-56692 nanocoai CVE debrief
CVE-2026-56692 is a medium-severity vulnerability in NanoClaw before 2.1.17. The issue is a symlink following vulnerability in the forwardAttachedFiles function, which allows container-controlled agents to exfiltrate host-readable files. The host validates attachment filenames using only the isSafeAttachmentName function before copying with fs.copyFileSync, which follows symlinks without containment checks. This enables malicious agents to disclose arbitrary host files. The vulnerability has a CVSS score of 6.8 and a severity of MEDIUM. The CVE was published on 2026-06-23T16:17:05.753Z and last modified on 2026-06-24T15:16:42.857Z.
- Vendor
- nanocoai
- Product
- nanoclaw
- CVSS
- MEDIUM 6.8
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-23
- Original CVE updated
- 2026-06-24
- Advisory published
- 2026-06-23
- Advisory updated
- 2026-06-24
Who should care
Users of NanoClaw versions before 2.1.17 should be aware of this vulnerability and take steps to mitigate it. This includes updating to version 2.1.17 or later, and implementing additional security measures to prevent symlink following attacks. Containerized environments that use NanoClaw may be particularly vulnerable to this issue.
Technical summary
The vulnerability exists in the forwardAttachedFiles function of NanoClaw, where the isSafeAttachmentName function is used to validate attachment filenames. However, this function does not prevent symlink following, allowing an attacker to manipulate the file path and access arbitrary host files. The fs.copyFileSync function is then used to copy the file, which follows symlinks without containment checks. This enables an attacker to exfiltrate host-readable files. The vulnerability has a CVSS score of 6.8 and a severity of MEDIUM.
Defensive priority
High priority should be given to updating NanoClaw to version 2.1.17 or later. In addition, defenders should implement additional security measures to prevent symlink following attacks, such as validating file paths and ensuring that containers do not have excessive privileges.
Recommended defensive actions
- Update NanoClaw to version 2.1.17 or later
- Implement additional security measures to prevent symlink following attacks
- Validate file paths and ensure that containers do not have excessive privileges
- Monitor for suspicious activity and implement logging and auditing
- Consider implementing compensating controls, such as SELinux or AppArmor, to restrict container privileges
Evidence notes
The CVE-2026-56692 vulnerability was reported by Vulncheck and has a CVSS score of 6.8. The vulnerability exists in the forwardAttachedFiles function of NanoClaw, where the isSafeAttachmentName function is used to validate attachment filenames. However, this function does not prevent symlink following, allowing an attacker to manipulate the file path and access arbitrary host files.
Official resources
This article is AI-assisted and based on the supplied source corpus.