Lucene search
K

28 matches found

Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.9 views

PT-2026-26006

Summary A local process can capture the OpenClaw Gateway auth token from Chrome CDP probe traffic on loopback. Details Affected versions inject x-openclaw-relay-token for loopback CDP URLs, and CDP reachability probes send that header to /json/version. If an attacker controls the probed loopback...

6.1CVSS5.9AI score0.00126EPSS
Exploits0References9
Github Security Blog
Github Security Blog
added 2026/02/18 5:45 p.m.16 views

OpenClaw has an authentication bypass in sandbox browser bridge server

Summary openclaw could start the sandbox browser bridge server without authentication. When the sandboxed browser is enabled, openclaw runs a local loopback HTTP bridge that exposes browser control endpoints for example /profiles, /tabs, /tabs/open, /agent/. Due to missing auth wiring in the...

8.5CVSS5.6AI score0.00142EPSS
Exploits0References6Affected Software1
OpenVAS
OpenVAS
added 2022/08/01 12:0 a.m.8 views

Fedora: Security Advisory for golang-github-chromedp-cdproto (FEDORA-2022-5038c3236c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Fedora
Fedora
added 2022/07/31 1:37 a.m.16 views

[SECURITY] Fedora 36 Update: golang-github-chromedp-cdproto-0-0.9.20220719git285dfb4.fc36

Package cdproto contains the generated commands, types, and events for the Chrome DevTools Protocol domains...

2.8AI score
Exploits0
OpenVAS
OpenVAS
added 2022/07/18 12:0 a.m.19 views

Fedora: Security Advisory for golang-github-chromedp (FEDORA-2022-3969b64d4b)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.1AI score
Exploits0References2
Fedora
Fedora
added 2022/07/17 1:15 a.m.36 views

[SECURITY] Fedora 35 Update: golang-github-chromedp-0.6.12-5.fc35

A faster, simpler way to drive browsers supporting the Chrome DevTools Protocol...

9.3CVSS3.2AI score0.05994EPSS
Exploits3
OpenVAS
OpenVAS
added 2022/07/14 12:0 a.m.23 views

Fedora: Security Advisory for golang-github-chromedp (FEDORA-2022-ba365d3703)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS8.9AI score0.05335EPSS
Exploits3References2
Fedora
Fedora
added 2022/07/13 2:0 a.m.30 views

[SECURITY] Fedora 36 Update: golang-github-chromedp-0.8.1-2.fc36

A faster, simpler way to drive browsers supporting the Chrome DevTools Protocol...

9.3CVSS3.2AI score0.05335EPSS
Exploits4
Rows per page
Query Builder