Lucene search
K

17 matches found

CVE
CVE
added 2026/06/12 9:57 p.m.33 views

CVE-2026-53838

OpenClaw is affected by a state mutation vulnerability in node pairing reconnection prior to version 2026.5.27. The issue lets paired nodes confuse approval scope decisions by manipulating reconnection logic, potentially restoring or presenting broader node authority than intended and bypassing a...

9.8CVSS5.3AI score0.00221EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/05 7:10 p.m.11 views

CVE-2026-35674

OpenClaw before 2026.5.18 contains a scope bypass vulnerability in the Gateway chat.send route that allows scoped clients to execute privileged commands. Attackers with operator.write scope can deliver commands through inherited external routes to bypass operator.approvals and operator.admin scop...

8.8CVSS5.7AI score0.00253EPSS
Exploits0References1
NVD
NVD
added 2026/05/29 4:16 p.m.18 views

CVE-2026-35674

OpenClaw before 2026.5.18 contains a scope bypass vulnerability in the Gateway chat.send route that allows scoped clients to execute privileged commands. Attackers with operator.write scope can deliver commands through inherited external routes to bypass operator.approvals and operator.admin scop...

8.8CVSS0.00253EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/29 3:11 p.m.14 views

EUVD-2026-33337

OpenClaw before 2026.5.18 contains a scope bypass vulnerability in the Gateway chat.send route that allows scoped clients to execute privileged commands. Attackers with operator.write scope can deliver commands through inherited external routes to bypass operator.approvals and operator.admin scop...

8.8CVSS5.9AI score0.00253EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/29 3:11 p.m.35 views

CVE-2026-35674 OpenClaw < 2026.5.18 - Scope Bypass via Inherited chat.send Route

OpenClaw before 2026.5.18 contains a scope bypass vulnerability in the Gateway chat.send route that allows scoped clients to execute privileged commands. Attackers with operator.write scope can deliver commands through inherited external routes to bypass operator.approvals and operator.admin scop...

8.8CVSS0.00253EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.13 views

PT-2026-44898

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.5.18 Description A scope bypass exists in the Gateway 'chat.send' endpoint. This issue allows clients with the operator.write scope to execute privileged commands by utilizing inherited external routes. This...

8.8CVSS5.8AI score0.00253EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/20 11:8 p.m.5 views

EUVD-2026-24014

OpenClaw before 2026.3.28 contains an authorization bypass vulnerability in Discord text approval commands that allows non-approvers to resolve pending exec approvals. Attackers can send Discord text commands to bypass the channels.discord.execApprovals.approvers allowlist and approve pending hos...

8.8CVSS6AI score0.00407EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/04/20 11:8 p.m.33 views

CVE-2026-41303 OpenClaw < 2026.3.28 - Authorization Bypass in Discord Text Approval Commands

OpenClaw before 2026.3.28 contains an authorization bypass vulnerability in Discord text approval commands that allows non-approvers to resolve pending exec approvals. Attackers can send Discord text commands to bypass the channels.discord.execApprovals.approvers allowlist and approve pending hos...

8.8CVSS0.00407EPSS
Exploits1References2
CVE
CVE
added 2026/04/09 9:23 p.m.13 views

CVE-2026-40149

PraisonAI’s multi-agent system is vulnerable to an unauthenticated modification of the tool approval allowlist via the gateway’s /api/approval/allow-list endpoint (pre-4.5.128). By adding dangerous tool names (e.g., shell_exec, file_write) when no auth_token is configured, an attacker can cause t...

7.9CVSS5.9AI score0.00227EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2026/03/19 2:16 a.m.3 views

CVE-2026-31993

OpenClaw versions prior to 2026.2.22 contain an allowlist parsing mismatch vulnerability in the macOS companion app that allows authenticated operators to bypass exec approval checks. Attackers with operator.write privileges and a paired macOS beta node can craft shell-chain payloads that pass...

6.4CVSS0.00291EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/19 1:0 a.m.3 views

CVE-2026-31993 OpenClaw < 2026.2.22 - Allowlist Parsing Mismatch in system.run Shell Chains

OpenClaw versions prior to 2026.2.22 contain an allowlist parsing mismatch vulnerability in the macOS companion app that allows authenticated operators to bypass exec approval checks. Attackers with operator.write privileges and a paired macOS beta node can craft shell-chain payloads that pass...

5.6CVSS6.1AI score0.00291EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/05 9:59 p.m.25 views

CVE-2026-28473 OpenClaw < 2026.2.2 - Authorization Bypass via /approve Chat Command

OpenClaw versions prior to 2026.2.2 contain an authorization bypass vulnerability where clients with operator.write scope can approve or deny exec approval requests by sending the /approve chat command. The /approve command path invokes exec.approval.resolve through an internal privileged gateway...

8.1CVSS0.00281EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/09 12:31 p.m.5 views

CVE-2023-4700

An authorization issue affecting GitLab EE affecting all versions from 14.7 prior to 16.3.6, 16.4 prior to 16.4.2, and 16.5 prior to 16.5.1, allowed a user to run jobs in protected environments, bypassing any required approvals...

6.5CVSS6.8AI score0.00373EPSS
Exploits0References1
Veracode
Veracode
added 2025/08/14 5:12 a.m.6 views

Improper Access Control

@finos/git-proxy is vulnerable to improper access control. The vulnerability is due to bypassing policies and explicit approvals when pushing to remote repositories, which allows an attacker to push code containing secrets or unwanted changes without required checks or plugin execution...

8.3CVSS7.3AI score0.00436EPSS
Exploits1References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/08/14 12:0 a.m.6 views

GitLab 18.0 < 18.0.6 / 18.1 < 18.1.4 / 18.2 < 18.2.2 (CVE-2025-8770)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab EE affecting all versions from 18.0 prior to 18.0.6, 18.1 prior to 18.1.4, and 18.2 prior to 18.2.2 that could have allowed authenticated users with specific...

6.5CVSS5.6AI score0.00264EPSS
Exploits0References3
Snyk
Snyk
added 2025/07/30 8:44 p.m.2 views

Improper Authorization

Overview @finos/git-proxy is a Deploy custom push protections and policies on top of Git. Affected versions of this package are vulnerable to Improper Authorization via the getDiff.ts and parsePush.ts files, when handling new branch creation. An attacker can bypass required approvals for prior...

8.2CVSS6.8AI score0.00346EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/07/30 7:59 p.m.9 views

CVE-2025-54583 GitProxy bypasses approvals when pushing multiple branches

GitProxy is an application that stands between developers and a Git remote endpoint e.g., github.com. Versions 1.19.1 and below allow users to push to remote repositories while bypassing policies and explicit approvals. Since checks and plugins are skipped, code containing secrets or unwanted...

8.3CVSS6.7AI score0.00436EPSS
Exploits1References4
Rows per page
Query Builder