CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-15319

highCVSS 7.3covered by 1 sourcefirst seen 2026-07-10
A security vulnerability has been detected in Sipeed PicoClaw up to 0.2.9. This affects the function IPAllowlist of the file web/backend/middleware/access_control.go of the component Launcher. Such manipulation leads to improper access controls. The attack may be performed from remote. The exploit has been disclosed publicly and may be used. The name of the patch is 3126. A patch should be applied to remediate this issue.

⚡ Watch CVE-2026-15319

Get an email if CVE-2026-15319 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (1)

External references

NVD record for CVE-2026-15319

CVE.org record

Embed the live status

CVE-2026-15319 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-15319 status](https://www.csirts.com/badge/CVE-2026-15319)](https://www.csirts.com/cve/CVE-2026-15319)