These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2026-56693 is a medium-severity privilege escalation vulnerability in NanoClaw before version 2.1.17. The vulnerability allows confined agent containers to invoke the create_agent delivery-action handler, performing privileged central-database writes without host-side authorization checks. This enables the creation of arbitrary agent groups, container configurations, and destinations, effectively esca [truncated]
CVE-2026-56692 is a medium-severity vulnerability in NanoClaw before 2.1.17. The issue is a symlink following vulnerability in the forwardAttachedFiles function, which allows container-controlled agents to exfiltrate host-readable files. The host validates attachment filenames using only the isSafeAttachmentName function before copying with fs.copyFileSync, which follows symlinks without containment check [truncated]
CVE-2026-56402 is a high-severity privilege escalation vulnerability in NanoClaw before version 2.1.17. The vulnerability is caused by a failure to verify the responder role authorization in the handleApprovalsResponse function. This allows attackers with a valid questionId to approve or reject privileged actions like package installation by submitting approval response payloads without proper role valida [truncated]