Improper Input Validation in Nanobot Personal AI Assistant
CVE-2026-48716

8.7HIGH

Key Information:

Vendor: Hkuds
Status: Nanobot
Vendor: CVE Published:; 18 June 2026

What is CVE-2026-48716?

The Nanobot personal AI assistant experiences a significant vulnerability in its WhatsApp bridge, where the system fails to properly sanitize filesystem paths derived from the incoming document messages. Specifically, in versions 0.1.5.post3 and earlier, it utilizes the fileName field from WhatsApp messages directly to construct paths without safeguards. This flaw allows an attacker to escalate their access by exploiting crafted file names, potentially gaining the ability to write files in unintended locations. For instance, by sending a malicious fileName such as '../../../.ssh/authorized_keys', the attacker can manipulate both the path and content of the file, posing a serious risk to the server’s security. A remedy has been proposed for this vulnerability in version 0.1.5.post4.

Affected Version(s)

nanobot <= 0.1.5.post3

References

https://github.com/HKUDS/nanobot/security/advisories/GHSA...

x_refsource_CONFIRM

CVSS V3.1

Score:

8.7

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 18, 2026
Vulnerability Reserved
May 22, 2026

CVE-2026-48716 Data

JSON

Hkuds

What is CVE-2026-48716?

Affected Version(s)

References

CVSS V3.1

Timeline