CVE-2026-9565 haojing8312 WorkClaw Blacklist bash.rs is_dangerous os command injection

🗓️ 26 May 2026 16:45:10Reported by VulDBType

CVE-2026-9565 affects haojing8312 WorkClaw up to 0.6.4; remote command injection via is_dangerous in bash.rs.

Reporter	Title	Published	Views	Family All 8
ATTACKERKB	CVE-2026-9565	26 May 202616:45	–	attackerkb
CNNVD	WorkClaw 操作系统命令注入漏洞	26 May 202600:00	–	cnnvd
CVE	CVE-2026-9565	26 May 202616:45	–	cve
EUVD	EUVD-2026-31886	26 May 202616:45	–	euvd
NVD	CVE-2026-9565	26 May 202617:16	–	nvd
Positive Technologies	PT-2026-43328	26 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-9565	28 May 202614:16	–	redhatcve
Vulnrichment	CVE-2026-9565 haojing8312 WorkClaw Blacklist bash.rs is_dangerous os command injection	26 May 202616:45	–	vulnrichment

[
  {
    "vendor": "haojing8312",
    "product": "WorkClaw",
    "versions": [
      {
        "version": "0.6.0",
        "status": "affected"
      },
      {
        "version": "0.6.1",
        "status": "affected"
      },
      {
        "version": "0.6.2",
        "status": "affected"
      },
      {
        "version": "0.6.3",
        "status": "affected"
      },
      {
        "version": "0.6.4",
        "status": "affected"
      }
    ],
    "cpes": [
      "cpe:2.3:a:haojing8312:workclaw:*:*:*:*:*:*:*:*"
    ],
    "modules": [
      "Blacklist Handler"
    ]
  }
]

Source	Link
github	www.github.com/haojing8312/WorkClaw/issues/4
vuldb	www.vuldb.com/vuln/365627
vuldb	www.vuldb.com/vuln/365627/cti
github	www.github.com/haojing8312/WorkClaw/
vuldb	www.vuldb.com/submit/815713

26 May 2026 16:45Current

CVSS 45.3

CVSS 3.16.3

CVSS 36.3

CVSS 26.5

EPSS0.0105