2 matches found
EUVD-2026-43565
OpenClaw Feishu tools npm package @openclaw/feishu in versions = 2026.6.6 could ignore per-account disablement. A lower-trust caller or a configured input path could perform actions that should have required a stronger authorization or policy check, resulting in unauthorized operations. The issue...
CVE-2026-62187
The CVE affects the npm package @openclaw/feishu (OpenClaw Feishu tools). Versions up to and including 2026.6.6 could ignore per-account disablement, allowing a lower-trust caller or a configured input path to perform actions that should require stronger authorization. The consequence is unauthor...