Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/02/21 1:28 a.m.7 views

CVE-2026-26327

OpenClaw is a personal AI assistant. Discovery beacons Bonjour/mDNS and DNS-SD include TXT records such as lanHost, tailnetDns, gatewayPort, and gatewayTlsSha256. TXT records are unauthenticated. Prior to version 2026.2.14, some clients treated TXT values as authoritative routing/pinning inputs...

7.1CVSS5.5AI score0.001EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/19 10:59 p.m.22 views

CVE-2026-26327 OpenClaw allows unauthenticated discovery TXT records to steer routing and TLS pinning

OpenClaw is a personal AI assistant. Discovery beacons Bonjour/mDNS and DNS-SD include TXT records such as lanHost, tailnetDns, gatewayPort, and gatewayTlsSha256. TXT records are unauthenticated. Prior to version 2026.2.14, some clients treated TXT values as authoritative routing/pinning inputs...

7.1CVSS0.001EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/19 10:59 p.m.3 views

CVE-2026-26327

OpenClaw is a personal AI assistant. Discovery beacons Bonjour/mDNS and DNS-SD include TXT records such as lanHost, tailnetDns, gatewayPort, and gatewayTlsSha256. TXT records are unauthenticated. Prior to version 2026.2.14, some clients treated TXT values as authoritative routing/pinning inputs...

7.1CVSS5.6AI score0.001EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/02/19 10:59 p.m.14 views

CVE-2026-26327

Summary (CVE-2026-26327 OpenClaw) OpenClaw uses discovery beacons that publish TXT records (lanHost, tailnetDns, gatewayPort, gatewayTlsSha256). TXT values are unauthenticated and, prior to 2026.2.14, could be treated as authoritative routing/pinning hints by some clients (iOS/macOS used host hin...

7.1CVSS5.6AI score0.001EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/02/18 12:33 a.m.21 views

OpenClaw allows unauthenticated discovery TXT records to steer routing and TLS pinning

Summary Discovery beacons Bonjour/mDNS and DNS-SD include TXT records such as lanHost, tailnetDns, gatewayPort, and gatewayTlsSha256. TXT records are unauthenticated. Prior to the fix, some clients treated TXT values as authoritative routing/pinning inputs: - iOS and macOS: used TXT-provided host...

7.1CVSS5.6AI score0.001EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder