HarborGuard / CVE
Back to search
HIGHCVE-2026-8629Published Modified CNA VulnCheck

CVE-2026-8629: Crabbox < v0.12.0 Privilege Escalation via Agent Ticket Endpoints

Crabbox prior to v0.12.0 contains a privilege escalation vulnerability that allows users with shared visibility-only access to obtain Code, WebVNC, and Egress agent tickets by sending POST requests to ticket endpoints. Attackers can exploit insufficient access control checks on the /v1/leases/:id/code/ticket, /v1/leases/:id/webvnc/ticket, and /v1/leases/:id/egress/ticket endpoints to obtain bridge-agent tickets and impersonate trusted lease-side bridges despite having only visibility permissions.

Metrics

CVSS v4.0
8.6
Severity
HIGH
Fixed in
0.12.0
Affected Products
1

Fix available

0.12.095cb30dc7dbaa1fef690a42ef6ac1cb6e307a191
Patch commits
Affected packages
  • openclaw / crabbox
    < 0.12.0 (from 0)
    Fixed in 95cb30dc7dbaa1fef690a42ef6ac1cb6e307a191
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
References
CVE-2026-8629: Crabbox < v0.12.0 Privilege Escalation via Agent Ticket Endpoints | HarborGuard CVE