Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Mon, 13 Jul 2026 07:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A flaw has been found in will-moss Isaiah up to 1.36.9. The impacted element is the function Server.Handle of the file app/server/server/server.go of the component Master Websocket Handler. Executing a manipulation of the argument Agent can lead to missing authorization. It is possible to launch the attack remotely. The pull request to fix this issue awaits acceptance. | |
| Title | will-moss Isaiah Master Websocket server.go Server.Handle authorization | |
| First Time appeared |
Will-moss
Will-moss isaiah |
|
| Weaknesses | CWE-862 CWE-863 |
|
| CPEs | cpe:2.3:a:will-moss:isaiah:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Will-moss
Will-moss isaiah |
|
| References |
| |
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2026-07-13T06:45:10.052Z
Reserved: 2026-07-12T18:12:28.084Z
Link: CVE-2026-15541
No data.
No data.
No data.
OpenCVE Enrichment
No data.