Lucene search
K

4 matches found

vulnersOsv
vulnersOsv
added 2026/03/31 11:50 p.m.7 views

@agentholdings/agent-passport (>=0.1.0 <=0.1.5), @chrysb/alphaclaw (=0.8.3-beta.1) +11 more potentially affected by CVE-2026-33579 via openclaw (>=2026.3.22 <=2026.3.24)

openclaw NPM version =2026.3.22, =0.1.0, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.1.0, =0.1.5 Source cves: CVE-2026-33579 Source advisory: SNYK:JS-OPENCLAW-15865802...

9.9CVSS7.4AI score0.00624EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/03/31 4:54 p.m.5 views

@agentholdings/agent-passport (>=0.1.0 <=0.1.5), @chrysb/alphaclaw (=0.8.3-beta.1) +11 more potentially affected by CVE-2026-33579 via openclaw (>=2026.3.22 <=2026.3.24)

openclaw NPM version =2026.3.22, =0.1.0, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.1.0, =0.1.5 Source cves: CVE-2026-33579 Source advisory: SNYK:JS-OPENCLAW-15857165...

9.9CVSS7.4AI score0.00624EPSS
Exploits0
Circl
Circl
added 2026/03/31 2:48 p.m.3 views

CVE-2026-33579

creationtimestamp| type| source ---|---|--- 2026-03-31 14:48:42+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miegc5clyl24 2026-03-31 16:29:20+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mielw2yxsd2r 2026-03-31 17:24:58+00:00| seen|...

9.9CVSS7.4AI score0.00624EPSS
Exploits0References33
ATTACKERKB
ATTACKERKB
added 2026/03/31 2:10 p.m.28 views

CVE-2026-33579

OpenClaw before 2026.3.28 contains a privilege escalation vulnerability in the /pair approve command path that fails to forward caller scopes into the core approval check. A caller with pairing privileges but without admin privileges can approve pending device requests asking for broader scopes...

8.6CVSS5.9AI score0.00624EPSS
Exploits0References4
Rows per page
Query Builder