CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-15320

mediumCVSS 5.4covered by 1 sourcefirst seen 2026-07-10
A vulnerability was detected in Sipeed PicoClaw up to 0.2.9. This vulnerability affects the function rt.ReloadConfig of the file pkg/channels/pico/pico.go. Performing a manipulation of the argument message.send results in missing authorization. It is possible to initiate the attack remotely. The exploit is now public and may be used. The reported GitHub issue was closed automatically due to inactivity.

⚡ Watch CVE-2026-15320

Get an email if CVE-2026-15320 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Advisory coverage (1)

External references

NVD record for CVE-2026-15320

CVE.org record

Embed the live status

CVE-2026-15320 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-15320 status](https://www.csirts.com/badge/CVE-2026-15320)](https://www.csirts.com/cve/CVE-2026-15320)