|
931
|
7.5 |
HIGH
Network
|
openclaw
|
openclaw
|
OpenClaw before 2026.3.28 contains a webhook replay vulnerability in Plivo V3 signature verification that canonicalizes query ordering for signatures but hashes raw URLs for replay detection. Attacke…
|
CWE-325
Missing Required Cryptographic Step
|
CVE-2026-41395
|
2026-05-1 05:45 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
932
|
8.2 |
HIGH
Network
|
openclaw
|
openclaw
|
OpenClaw before 2026.3.31 contains an authentication bypass vulnerability where unauthenticated plugin-auth HTTP routes receive operator runtime write scopes. Attackers can access these routes withou…
|
CWE-862
Missing Authorization
|
CVE-2026-41394
|
2026-05-1 05:45 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
933
|
4.8 |
MEDIUM
Adjacent
|
openclaw
|
openclaw
|
OpenClaw before 2026.3.31 contains a wide-area discovery vulnerability allowing arbitrary tailnet peers to be accepted as DNS authorities. Attackers with same-tailnet position and CA-trusted endpoint…
|
CWE-346
Origin Validation Error
|
CVE-2026-41393
|
2026-05-1 05:45 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
934
|
7.3 |
HIGH
Local
|
openclaw
|
openclaw
|
OpenClaw before 2026.3.31 contains an exec allowlist bypass vulnerability allowing attackers to inherit allowlist trust via shell init-file wrapper invocations. Attackers can exploit shell options li…
|
CWE-184
Incomplete Blacklist
|
CVE-2026-41392
|
2026-05-1 05:42 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
935
|
6.1 |
MEDIUM
Local
|
openclaw
|
openclaw
|
OpenClaw before 2026.3.31 fails to properly sanitize PIP_INDEX_URL and UV_INDEX_URL environment variables in host execution contexts, allowing attackers to redirect Python package-index traffic. Atta…
|
CWE-184
Incomplete Blacklist
|
CVE-2026-41391
|
2026-05-1 05:42 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
936
|
7.3 |
HIGH
Local
|
openclaw
|
openclaw
|
OpenClaw before 2026.3.28 contains an exec allowlist bypass vulnerability where allow-always persistence fails to unwrap /usr/bin/script and similar wrappers before storing trust decisions. Attackers…
|
CWE-807
Reliance on Untrusted Inputs in a Security Decision
|
CVE-2026-41390
|
2026-05-1 05:38 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
937
|
6.5 |
MEDIUM
Network
|
openclaw
|
openclaw
|
OpenClaw before 2026.3.31 contains a configuration management vulnerability where startup migration treats empty-array settings as missing values. Attackers can restart the application to rehydrate r…
|
CWE-372
Incomplete Internal State Distinction
|
CVE-2026-41388
|
2026-05-1 05:37 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
938
|
7.8 |
HIGH
Local
|
openclaw
|
openclaw
|
OpenClaw before 2026.3.22 contains an incomplete host environment variable sanitization vulnerability in host-env-security-policy.json and host-env-security.ts that allows package-manager environment…
|
CWE-183
Permissive List of Allowed Inputs
|
CVE-2026-41387
|
2026-05-1 05:36 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
939
|
7.6 |
HIGH
Network
|
openclaw
|
openclaw
|
OpenClaw before 2026.4.8 contains a server-side request forgery policy bypass vulnerability allowing attackers to trigger navigations bypassing normal SSRF checks. Attackers can exploit browser inter…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-41912
|
2026-05-1 04:38 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
940
|
6.5 |
MEDIUM
Network
|
openclaw
|
openclaw
|
OpenClaw before 2026.4.8 contains a filesystem policy bypass vulnerability in docx upload processing that allows local file reads outside workspace boundaries. Attackers can exploit upload_file and u…
|
CWE-22
Path Traversal
|
CVE-2026-41911
|
2026-05-1 04:38 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
