|
401
|
7.3 |
HIGH
Local
|
-
|
-
|
OpenClaw before 2026.3.28 contains an exec allowlist bypass vulnerability where allow-always persistence fails to unwrap /usr/bin/script and similar wrappers before storing trust decisions. Attackers…
New
|
CWE-807
Reliance on Untrusted Inputs in a Security Decision
|
CVE-2026-41390
|
2026-04-29 05:10 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
402
|
5.3 |
MEDIUM
Local
|
-
|
-
|
OpenClaw before 2026.3.31 fails to properly sanitize PIP_INDEX_URL and UV_INDEX_URL environment variables in host execution contexts, allowing attackers to redirect Python package-index traffic. Atta…
New
|
CWE-184
Incomplete Blacklist
|
CVE-2026-41391
|
2026-04-29 05:10 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
403
|
6.7 |
MEDIUM
Local
|
-
|
-
|
OpenClaw before 2026.3.31 contains an exec allowlist bypass vulnerability allowing attackers to inherit allowlist trust via shell init-file wrapper invocations. Attackers can exploit shell options li…
New
|
CWE-184
Incomplete Blacklist
|
CVE-2026-41392
|
2026-04-29 05:10 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
404
|
4.8 |
MEDIUM
Adjacent
|
-
|
-
|
OpenClaw before 2026.3.31 contains a wide-area discovery vulnerability allowing arbitrary tailnet peers to be accepted as DNS authorities. Attackers with same-tailnet position and CA-trusted endpoint…
New
|
CWE-346
Origin Validation Error
|
CVE-2026-41393
|
2026-04-29 05:10 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
405
|
8.2 |
HIGH
Network
|
-
|
-
|
OpenClaw before 2026.3.31 contains an authentication bypass vulnerability where unauthenticated plugin-auth HTTP routes receive operator runtime write scopes. Attackers can access these routes withou…
New
|
CWE-862
Missing Authorization
|
CVE-2026-41394
|
2026-04-29 05:10 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
406
|
7.5 |
HIGH
Network
|
-
|
-
|
OpenClaw before 2026.3.28 contains a webhook replay vulnerability in Plivo V3 signature verification that canonicalizes query ordering for signatures but hashes raw URLs for replay detection. Attacke…
New
|
CWE-325
Missing Required Cryptographic Step
|
CVE-2026-41395
|
2026-04-29 05:10 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
407
|
7.8 |
HIGH
Local
|
-
|
-
|
OpenClaw before 2026.3.31 allows workspace .env files to override the OPENCLAW_BUNDLED_PLUGINS_DIR environment variable, compromising plugin trust verification. Attackers with control over workspace …
New
|
CWE-829
Inclusion of Functionality from Untrusted Control Sphere
|
CVE-2026-41396
|
2026-04-29 05:10 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
408
|
6.8 |
MEDIUM
Network
|
-
|
-
|
OpenClaw before 2026.3.31 contains a sandbox escape vulnerability allowing attackers to traverse directory boundaries through symlink exploitation during file synchronization operations. Remote attac…
New
|
CWE-59
Link Following
|
CVE-2026-41397
|
2026-04-29 05:10 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
409
|
4.6 |
MEDIUM
Adjacent
|
-
|
-
|
OpenClaw before 2026.4.2 contains an improper access control vulnerability in the iOS A2UI bridge that treats generic local-network pages as trusted origins. Attackers can inject unauthorized agent.r…
New
|
CWE-346
Origin Validation Error
|
CVE-2026-41398
|
2026-04-29 05:10 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
410
|
7.5 |
HIGH
Network
|
-
|
-
|
OpenClaw before 2026.3.28 accepts unbounded concurrent unauthenticated WebSocket upgrades without pre-authentication budget allocation. Unauthenticated network attackers can exhaust socket and worker…
New
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2026-41399
|
2026-04-29 05:10 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
