CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2 matches found

ATTACKERKB•added 2026/04/28 6:10 p.m.•4 views

CVE-2026-42427

OpenClaw before 2026.4.8 contains a remote code execution vulnerability caused by missing environment variable denylist entries for HGRCPATH, CARGOBUILDRUSTCWRAPPER, RUSTCWRAPPER, and MAKEFLAGS. Attackers can inject malicious build tool environment variables to influence host exec commands and...

5.8CVSS6.6AI score0.00188EPSS

Exploits0References4

Positive Technologies•added 2026/04/28 12:0 a.m.•4 views

PT-2026-35805

OpenClaw before 2026.4.8 contains a remote code execution vulnerability caused by missing environment variable denylist entries for HGRCPATH, CARGO BUILD RUSTC WRAPPER, RUSTC WRAPPER, and MAKEFLAGS. Attackers can inject malicious build tool environment variables to influence host exec commands an...

5.8CVSS6.6AI score0.00188EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by