Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2 matches found

CVE
CVEadded 2026/04/10 4:3 p.m.7 views

CVE-2026-35664

CVE-2026-35664 affects OpenClaw prior to version 2026.3.25. The vulnerability is an authentication bypass in the raw card send surface, enabling unpaired recipients to mint legacy callback payloads. Attackers can issue raw card commands to bypass DM pairing restrictions and access callback handli...

6.9CVSS5.8AI score0.00098EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2026/03/29 3:49 p.m.1 views

GHSA-77W2-CRQV-CMV3 OpenClaw: Feishu Raw Card Send Surface Can Mint Legacy Card Callbacks That Bypass DM Pairing

Summary Feishu Raw card Send Surface Can Mint Legacy Card Callbacks That Bypass DM Pairing Affected Packages / Versions - Package: openclaw - Affected versions: = 2026.3.24 - First patched version: 2026.3.25 - Latest published npm version at verification time: 2026.3.24 Details Feishu raw card...

6.9CVSS5.9AI score0.00098EPSS
Exploits0References3
Rows per page
Query Builder