CVE-2026-32058 OpenClaw < 2026.2.26 - Approval Context-Binding Weakness in system.run via host=node

OpenClaw versions prior to 2026.2.26 contain an approval context-binding weakness in system.run execution flows with host=node that allows reuse of previously approved requests with modified environment variables. Attackers with access to an approval id can exploit this by reusing an approval wit...

vantuz (>=3.3.2 <=3.3.7) potentially affected by CVE-2026-32058 via openclaw (=0.0.1)

openclaw NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on openclaw and may be impacted: - vantuz =3.3.2, =3.3.7 Source cves: CVE-2026-32058 Source advisory: OSV:GHSA-HJVP-QHM6-WRH2...

CVE-2025-32058

The Infotainment ECU manufactured by Bosch uses a RH850 module for CAN communication. RH850 is connected to infotainment over the INC interface through a custom protocol. There is a vulnerability during processing requests of this protocol on the V850 side which allows an attacker with code...

CVE-2025-32058

CVE-2025-32058 is evidenced in connected PT Security reports as a stack overflow in the v850 core when handling CBR in the Nissan Leaf ZE1 2020 infotainment ECU software stack. Root cause: improper stack handling in the v850 processing path. Documented impact: potential remote code execution (RCE...

CVE-2025-32058 Stack Overflow in processing requests over INC interface on RH850 side of Infotainment ECU

The Infotainment ECU manufactured by Bosch uses a RH850 module for CAN communication. RH850 is connected to infotainment over the INC interface through a custom protocol. There is a vulnerability during processing requests of this protocol on the V850 side which allows an attacker with code...

CVE-2023-32058

Vyper is a Pythonic smart contract language for the Ethereum virtual machine. Prior to version 0.3.8, due to missing overflow check for loop variables, by assigning the iterator of a loop to a variable, it is possible to overflow the type of the latter. The issue seems to happen only in loops of...

CVE-2022-32058

An infinite loop in the function httpRpmPass of TP-Link TL-WR741N/TL-WR742N V1/V2/V3130415 allows attackers to cause a Denial of Service DoS via a crafted packet...

CVE-2023-32058

creationtimestamp| type| source ---|---|--- 2023-05-12 00:15:46+00:00| seen| https://t.me/cibsecurity/63927 2025-01-24 16:04:38+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/2918...

2vyper (=0.3.0), ape-safe (=0.6.0) +27 more potentially affected by CVE-2023-32058 via vyper (>=0.1.0b12 <=0.3.7)

vyper PYPI version =0.1.0b12, =0.7.1, =0.1.0, =0.0.0, =0.0.0, =0.0.5, =0.1.0, =0.1.0, =0.7.2, =0.1.10.0, =1.0.1, =0.1.0, =1.4.0, =0.2.1, =0.3.5 and more Source cves: CVE-2023-32058 Source advisory: OSV:PYSEC-2023-78...

CVE-2023-32058

CVE-2023-32058 affects the Vyper language (EVM smart contracts). Prior to version 0.3.8, there was a missing overflow check for loop variables when iterating with patterns like for i in range(a, a + N). This could cause the loop variable’s type to overflow. The issue appears specifically in for i...

CVE-2023-32058 Vyper vulnerable to integer overflow in loop

Vyper is a Pythonic smart contract language for the Ethereum virtual machine. Prior to version 0.3.8, due to missing overflow check for loop variables, by assigning the iterator of a loop to a variable, it is possible to overflow the type of the latter. The issue seems to happen only in loops of...

CVE-2022-32058

creationtimestamp| type| source ---|---|--- 2022-07-07 22:15:43+00:00| seen| https://t.me/cibsecurity/45772...

CVE-2022-32058

An infinite loop in the function httpRpmPass of TP-Link TL-WR741N/TL-WR742N V1/V2/V3130415 allows attackers to cause a Denial of Service DoS via a crafted packet...

CVE-2022-32058

The CVE-2022-32058 issue affects TP-Link TL-WR741N/TL-WR742N (versions V1/V2/V3_130415). A vulnerability in the function httpRpmPass causes an infinite loop, enabling an attacker to trigger a Denial of Service (DoS) via specially crafted packets. The initial description and connected records cons...