Lucene search
K

6789 matches found

NVD
NVD
added 2026/06/16 7:17 p.m.11 views

CVE-2026-53848

OpenClaw before 2026.5.26 contains an exec allowlist bypass vulnerability allowing authenticated operators to execute wrapper-level side effects outside allowlisted command intent. Attackers can craft command requests that bypass allowlist validation by leveraging transparent command wrappers to...

4.3CVSS0.00185EPSS
Exploits0References2
NVD
NVD
added 2026/06/16 7:17 p.m.13 views

CVE-2026-53844

OpenClaw before 2026.4.29 contains a session visibility check bypass vulnerability in shared memory search that allows authenticated callers to access memory entries without proper authorization. Attackers can skip session visibility guards on the search path to retrieve memory entries that shoul...

6.5CVSS0.0021EPSS
Exploits0References2
NVD
NVD
added 2026/06/16 7:17 p.m.11 views

CVE-2026-53843

OpenClaw before 2026.5.26 contains an authorization bypass vulnerability where a surviving pairing-scoped device session can re-establish node token authority after revocation. Attackers with a paired device can regain WebSocket node-level access without renewed approval, weakening revocation...

8.8CVSS0.00275EPSS
Exploits0References2
NVD
NVD
added 2026/06/16 7:17 p.m.10 views

CVE-2026-53845

OpenClaw before 2026.5.6 contains a hook bypass vulnerability where skill commands routed through the affected dispatch path skip before-tool-call hook coverage. Attackers can exploit this by sending skill commands through the vulnerable dispatch path to bypass hook-based auditing and policy...

4.3CVSS0.00185EPSS
Exploits0References2
NVD
NVD
added 2026/06/16 7:17 p.m.13 views

CVE-2026-53841

OpenClaw before 2026.5.12 contains a cross-site scripting vulnerability in exported session HTML that preserves unsafe javascript: and data: links in generated content. Attackers can execute browser-side scripts if a trusted operator opens the exported file and activates a malicious link...

6.1CVSS0.00188EPSS
Exploits0References2
CVE
CVE
added 2026/06/16 6:5 p.m.23 views

CVE-2026-53866

OpenClaw vulnerable before version 2026.5.12 due to an allowlist bypass in shell inline-command parsing. Affected: authenticated operators could cause unapproved commands to execute because a parser case omits the expected allowlist decision. The issue is tied to the shell inline-command handling...

8.1CVSS5.8AI score0.0026EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/16 6:5 p.m.18 views

CVE-2026-53865

CVE-2026-53865 : OpenClaw prior to 2026.5.2 has a path traversal bug in maintenance task execution that lets workspace-derived service paths influence the trash command. An attacker can run unintended local executables from operator-unintended paths by manipulating environment paths during mainte...

7.2CVSS5.7AI score0.00119EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/16 6:5 p.m.22 views

CVE-2026-53864 OpenClaw < 2026.5.26 - Insufficient Environment Variable Sanitization in Node.js Control Variables

OpenClaw before 2026.5.26 contains an insufficient sanitization vulnerability in the host environment sanitizer that allows Node.js control variables to bypass validation. Attackers with access to workspace .env files, tool environment overrides, or skill environment blocks can pass malicious...

8.1CVSS0.00246EPSS
Exploits0References2
CVE
CVE
added 2026/06/16 6:5 p.m.21 views

CVE-2026-53863

OpenClaw before 2026.4.25 exposes an input validation vulnerability in tool group policy callers that accept unvalidated group IDs. When a group ID is supplied to the policy resolver, it can lead to incorrect group-policy decisions for tool invocations, potentially bypassing intended access contr...

7.1CVSS5.3AI score0.00169EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/16 6:5 p.m.8 views

CVE-2026-53864 OpenClaw < 2026.5.26 - Insufficient Environment Variable Sanitization in Node.js Control Variables

OpenClaw before 2026.5.26 contains an insufficient sanitization vulnerability in the host environment sanitizer that allows Node.js control variables to bypass validation. Attackers with access to workspace .env files, tool environment overrides, or skill environment blocks can pass malicious...

8.1CVSS5.3AI score0.00246EPSS
Exploits0References2
CVE
CVE
added 2026/06/16 6:5 p.m.33 views

CVE-2026-53864

OpenClaw before 2026.5.26 contains an insufficient sanitization vulnerability in the host environment sanitizer. This allows Node.js control variables to bypass validation when provided via workspace .env files, tool environment overrides, or skill environment blocks, potentially influencing chil...

8.1CVSS5.3AI score0.00246EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/16 6:5 p.m.25 views

CVE-2026-53862

OpenClaw prior to 2026.5.12 is affected by a bootstrap token replay vulnerability that allows callers with pending token access to reuse tokens for broader scopes, potentially escalating pairing authority before approval. The issue is described in the CVE as allowing bootstrap tokens to be replay...

5.4CVSS5.3AI score0.00088EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/16 6:5 p.m.22 views

CVE-2026-53860

OpenClaw

5.4CVSS5.3AI score0.00171EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/16 6:5 p.m.23 views

CVE-2026-53861

OpenClaw before 2026.5.6 has an allowlist bypass in the macOS Swift exec feature due to missing handling for combined POSIX inline flags. The vulnerability enables attackers to run shell content outside the intended allowlist check by using combined flag forms, with impact depending on operator c...

9.8CVSS5.7AI score0.0024EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/16 6:5 p.m.16 views

CVE-2026-53859

Technical details (affected components, root cause, specific versions, exploitation) are not publicly available in the provided documents. Monitor for updates.

6.5CVSS5.3AI score0.0021EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/16 6:5 p.m.22 views

CVE-2026-53858 OpenClaw < 2026.5.2 - Arbitrary Runtime Dependency Loading via STATE_DIRECTORY Environment Variable

OpenClaw before 2026.5.2 contains an environment variable injection vulnerability where workspace .env STATEDIRECTORY could influence bundled runtime dependency roots. Attackers can manipulate the STATEDIRECTORY variable to load runtime dependencies from unintended local paths, potentially...

7.1CVSS0.00124EPSS
Exploits0References2
CVE
CVE
added 2026/06/16 6:5 p.m.18 views

CVE-2026-53857

OpenClaw before 2026.5.3 is vulnerable: the policy enforcement flaw allows Zalo display-name changes to influence allowFrom policy matching, causing attackers with mutable display names to receive responses intended for other Zalo identities when the feature is enabled. Affected product: OpenClaw...

8.6CVSS5.3AI score0.00225EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/16 6:5 p.m.14 views

CVE-2026-53858

OpenClaw (pre-2026.5.2) is affected by CVE-2026-53858: an environment variable injection flaw where the workspace .env STATE_DIRECTORY can influence bundled runtime dependency roots. An attacker can manipulate STATE_DIRECTORY to load runtime dependencies from unintended local paths, potentially e...

7.1CVSS5.3AI score0.00124EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/16 6:5 p.m.14 views

CVE-2026-53856

OpenClaw before 2026.4.24 contains an insecure file permissions vulnerability in the config recovery flow that restores OpenClaw.json with overly broad permissions. Local attackers on shared hosts can read sensitive configuration data by exploiting the recovery path to access the restored config ...

5.7CVSS5.2AI score0.00094EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/16 6:5 p.m.27 views

CVE-2026-53854

OpenClaw is affected by a privilege escalation in versions before 2026.4.25. The issue arises from wildcard inheritance of ownerAllowFrom state across channel boundaries in internal and webchat command authentication, allowing a sender to execute owner-like commands outside the intended channel s...

6.5CVSS5.6AI score0.00245EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder