Lucene search
K

5 matches found

EUVD
EUVD
added 2026/06/13 12:34 a.m.12 views

EUVD-2026-36612

OpenClaw before 2026.4.24 contains a token revocation vulnerability allowing callers with revoked slash tokens to continue executing commands during monitor refresh windows. Attackers can exploit stale token acceptance to invoke slash command behavior briefly after token revocation, potentially...

6.5CVSS5.3AI score0.00181EPSS
Exploits0References3
NVD
NVD
added 2026/06/12 10:16 p.m.17 views

CVE-2026-53824

OpenClaw before 2026.4.24 contains a token revocation vulnerability allowing callers with revoked slash tokens to continue executing commands during monitor refresh windows. Attackers can exploit stale token acceptance to invoke slash command behavior briefly after token revocation, potentially...

6.5CVSS0.00181EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/12 9:56 p.m.9 views

CVE-2026-53824 Mattermost plugin for OpenClaw < 2026.4.24 - Slash Token Revocation Lag via Monitor Refresh Delay

OpenClaw before 2026.4.24 contains a token revocation vulnerability allowing callers with revoked slash tokens to continue executing commands during monitor refresh windows. Attackers can exploit stale token acceptance to invoke slash command behavior briefly after token revocation, potentially...

6.5CVSS5.3AI score0.00181EPSS
Exploits0References2
CVE
CVE
added 2026/06/12 9:56 p.m.27 views

CVE-2026-53824

Mattermost/OpenClaw before 2026.4.24 contains a token revocation lag vulnerability where revoked slash tokens can still execute commands briefly during monitor refresh windows. Attackers can exploit stale token acceptance to invoke slash command behavior after revocation, potentially enabling una...

6.5CVSS5.3AI score0.00181EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/12 9:56 p.m.29 views

CVE-2026-53824 Mattermost plugin for OpenClaw < 2026.4.24 - Slash Token Revocation Lag via Monitor Refresh Delay

OpenClaw before 2026.4.24 contains a token revocation vulnerability allowing callers with revoked slash tokens to continue executing commands during monitor refresh windows. Attackers can exploit stale token acceptance to invoke slash command behavior briefly after token revocation, potentially...

6.5CVSS0.00181EPSS
Exploits0References2
Rows per page
Query Builder