CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

23 matches found

EUVD•added 2026/04/28 6:9 p.m.•2 views

EUVD-2026-26087

OpenClaw before 2026.3.31 contains a privilege escalation vulnerability allowing paired nodes with role=node to dispatch node.event agent requests with unrestricted gateway-side tool access. Attackers with trusted paired node credentials can escalate privileges by leveraging unrestricted...

8.8CVSS6.3AI score0.00285EPSS

Exploits0References3

Cvelist•added 2026/04/28 6:9 p.m.•24 views

CVE-2026-41378 OpenClaw < 2026.3.31 - Privilege Escalation to Remote Code Execution via Unrestricted node.event Agent Dispatch

8.8CVSS0.00285EPSS

Exploits0References3

CVE•added 2026/04/28 6:9 p.m.•6 views

CVE-2026-41378

OpenClaw OpenClaw is affected up to version 2026.3.28. The vulnerability allows paired nodes with the role=node to dispatch node.event agent requests with unrestricted gateway-side tool access, enabling remote code execution on the gateway. The issue is fixed in 2026.3.31 (patched in OpenClaw as ...

8.8CVSS6.3AI score0.00285EPSS

Exploits0References3Affected Software1

ATTACKERKB•added 2026/04/28 6:9 p.m.•3 views

CVE-2026-41378

8.8CVSS6.3AI score0.00285EPSS

Exploits0References4

OSV•added 2026/04/21 5:17 p.m.•2 views

GHSA-7GCJ-PHFF-2884 Signal K Server has an Unauthenticated Regular Expression Denial of Service (ReDoS) via WebSocket Subscription Paths

Summary The SignalK server is vulnerable to an unauthenticated Regular Expression Denial of Service ReDoS attack within its WebSocket subscription handling logic. By injecting unescaped regex metacharacters into the context parameter of a stream subscription, an attacker can force the server's...

7.5CVSS5.8AI score0.00075EPSS

Exploits1References6

OSV•added 2026/04/06 2:49 p.m.•3 views

BIT-PARSE-2026-34573 Parse Server: GraphQL complexity validator exponential fragment traversal DoS

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.68 and 9.7.0, the GraphQL query complexity validator can be exploited to cause a denial-of-service by sending a crafted query with binary fan-out fragment spreads. A singl...

8.2CVSS5.7AI score0.00018EPSS

Exploits0References6

OSV•added 2026/04/03 3:15 a.m.•0 views

GHSA-GJM7-HW8F-73RQ OpenClaw: Paired node escalates to gateway RCE via unrestricted node.event agent dispatch

Summary Paired node escalates to gateway RCE via unrestricted node.event agent dispatch Current Maintainer Triage - Status: narrow - Normalized severity: high - Assessment: v2026.3.28 still lets paired role=node clients drive node.event agent.request into broader gateway-side tool access than nod...

8.8CVSS5.9AI score0.00285EPSS

Exploits0References6

Github Security Blog•added 2026/04/03 3:15 a.m.•3 views

OpenClaw: Paired node escalates to gateway RCE via unrestricted node.event agent dispatch

8.8CVSS5.9AI score0.00285EPSS

Exploits0References6Affected Software1

RedhatCVE•added 2026/03/26 3:11 p.m.•1 views

CVE-2026-32057

OpenClaw versions prior to 2026.2.25 contain an authentication bypass vulnerability in the trusted-proxy Control UI pairing mechanism that accepts client.id=control-ui without proper device identity verification. An authenticated node role websocket client can exploit this by using the control-ui...

8.1CVSS5.9AI score0.00094EPSS

Exploits0References1

OSV•added 2026/03/21 1:17 a.m.•1 views

CVE-2026-32057

5.9CVSS6.1AI score

Exploits0References3

NVD•added 2026/03/21 1:17 a.m.•1 views

CVE-2026-32057

8.1CVSS0.00094EPSS

Exploits0References3

Vulnrichment•added 2026/03/21 12:42 a.m.•1 views

CVE-2026-32057 OpenClaw < 2026.2.25 - Authentication Bypass via Control UI client.id Parameter

7.1CVSS5.9AI score0.00094EPSS

Exploits0References3

ATTACKERKB•added 2026/03/21 12:42 a.m.•0 views

CVE-2026-32057

6CVSS5.9AI score0.00094EPSS

Exploits0References4

NVD•added 2026/03/19 10:16 p.m.•2 views

CVE-2026-32001

OpenClaw versions prior to 2026.2.22 contain an authentication bypass vulnerability that allows clients authenticated with a shared gateway token to connect as role=node without device identity verification. Attackers can exploit this by claiming the node role during WebSocket handshake to inject...

5.4CVSS0.00069EPSS

Exploits0References3

EUVD•added 2026/03/19 10:6 p.m.•1 views

EUVD-2026-13253

5.4CVSS5.8AI score0.00069EPSS

Exploits0References3

CVE•added 2026/03/19 10:6 p.m.•6 views

CVE-2026-32001

OpenClaw prior to version 2026.2.22 is affected by an authentication bypass vulnerability during WebSocket handshake. Clients authenticated with a shared gateway token can connect as role=node without device identity verification, enabling attackers to claim the node role and inject unauthorized ...

5.4CVSS5.8AI score0.00069EPSS

Exploits0References3Affected Software1

Cvelist•added 2026/03/09 11:1 p.m.•27 views

CVE-2026-30925 Parse Server affected by Regular Expression Denial of Service (ReDoS) via `$regex` query in LiveQuery

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.5.0-alpha.14 and 8.6.11, a malicious client can subscribe to a LiveQuery with a crafted $regex pattern that causes catastrophic backtracking, blocking the Node.js event loop. This...

8.2CVSS0.00021EPSS

Exploits0References3

Github Security Blog•added 2026/03/03 11:32 p.m.•9 views

OpenClaw's Node role device-identity bypass allows unauthorized node.event injection

Summary A client authenticated with a shared gateway token could connect as role=node without device identity/pairing, then call node.event to trigger agent.request and voice.transcript flows. Affected Packages / Versions - Package: npm openclaw - Affected versions: = 2026.2.21-2 - Patched versio...

5.4CVSS6.1AI score0.00069EPSS

Exploits0References5Affected Software1

OSV•added 2026/03/03 11:32 p.m.•1 views

GHSA-RV2Q-F2H5-6XMG OpenClaw's Node role device-identity bypass allows unauthorized node.event injection

5.4CVSS6.1AI score0.00069EPSS

Exploits0References5