5 matches found
CVE-2026-43532
OpenClaw versions 2026.4.7 before 2026.4.10 fail to normalize Discord event cover image parameters in sandbox media processing. Attackers can bypass media normalization to inject host-local media references into channel action paths expecting normalized media...
Exposure of Resource to Wrong Sphere
Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Exposure of Resource to Wrong Sphere in the handling of shared reply MEDIA references, where paths are treated as trusted. An attacker can cause unauthorized access to local files by...
CVE-2025-34158
creationtimestamp| type| source ---|---|--- 2025-08-21 14:25:48+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115067214078755437 2025-08-22 09:01:44+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lwy3u7znda2j 2025-08-27 14:57:16+00:00| seen|...
CVE-2024-52972
creationtimestamp| type| source ---|---|--- 2025-01-23 07:03:18+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/2713 2025-01-23 07:15:24+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgfdjuiqlj2f 2025-01-23 07:44:35+00:00| seen|...
CVE-2024-12855
creationtimestamp| type| source ---|---|--- 2025-01-08 08:19:47+00:00| seen| https://infosec.exchange/users/cve/statuses/113791755038241786 2025-01-08 09:12:38+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/681 2025-01-08 09:15:36+00:00| seen|...