CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

Github Security Blog•added 2026/05/06 9:31 p.m.•11 views

Duplicate Advisory: OpenClaw: MCP loopback owner context is derived from server-issued bearer tokens

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-r6xh-pqhr-v4xh. This link is maintained to preserve external references. Original Description OpenClaw before 2026.4.22 derives loopback MCP owner context from spoofable server-issued bearer tokens in request...

8.5CVSS5.7AI score0.00012EPSS

Exploits0References5Affected Software1

EUVD•added 2026/05/06 9:31 p.m.•4 views

EUVD-2026-28201

OpenClaw before 2026.4.22 derives loopback MCP owner context from spoofable server-issued bearer tokens in request headers. Non-owner loopback clients can present themselves as owner to bypass owner-gated operations by manipulating the sender-owner header metadata...

8.5CVSS5.8AI score0.00012EPSS

Exploits0References4

OSV•added 2026/05/06 9:31 p.m.•2 views

GHSA-35VF-VW9F-Q3CR Duplicate Advisory: OpenClaw: MCP loopback owner context is derived from server-issued bearer tokens

8.5CVSS5.7AI score0.00012EPSS

Exploits0References4

NVD•added 2026/05/06 8:16 p.m.•2 views

CVE-2026-44118

8.5CVSS0.00012EPSS

Exploits0References3

Cvelist•added 2026/05/06 7:49 p.m.•22 views

CVE-2026-44118 OpenClaw < 2026.4.22 - Owner Context Spoofing via Bearer Token Header

8.5CVSS0.00012EPSS

Exploits0References3

Vulnrichment•added 2026/05/06 7:49 p.m.•5 views

CVE-2026-44118 OpenClaw < 2026.4.22 - Owner Context Spoofing via Bearer Token Header

8.5CVSS5.8AI score0.00012EPSS

Exploits0References3

ATTACKERKB•added 2026/05/06 7:49 p.m.•3 views

CVE-2026-44118

8.5CVSS5.8AI score0.00012EPSS

Exploits0References4

CNNVD•added 2026/05/06 12:0 a.m.•5 views

OpenClaw 安全漏洞

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a security vulnerability that stems from the derivation of a loopback MCP owner context from a server-issued bearer token that can be spoofed in the request header, which can be exploited by an attacke...

8.5CVSS6AI score0.00012EPSS

Exploits0References1

EUVD•added 2026/05/05 11:25 a.m.•4 views

EUVD-2026-27283

OpenClaw versions 2026.4.7 before 2026.4.14 contain a privilege escalation vulnerability where heartbeat owner downgrade logic skips webhook wake events carrying untrusted content. Attackers can exploit this by sending untrusted webhook wake events to preserve owner-like execution context when th...

9.1CVSS5.9AI score0.0016EPSS

Exploits0References3

Snyk•added 2026/05/04 8:22 p.m.•6 views

Access Control Bypass

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Access Control Bypass via the MCP loopback process. An attacker can gain unauthorized access to owner-gated operations by spoofing owner-context metadata in request headers. Remediation...

8.5CVSS5.8AI score0.00012EPSS

Exploits0References2

OSV•added 2026/05/04 8:22 p.m.•3 views

GHSA-R6XH-PQHR-V4XH OpenClaw: MCP loopback owner context is derived from server-issued bearer tokens

Summary MCP loopback owner context is derived from server-issued bearer tokens. Affected Packages / Versions - Package: openclaw npm - Affected versions: = 2026.4.21 - Fixed version: 2026.4.22 Impact The loopback MCP path accepted spoofable owner-context metadata from request headers, which could...

8.5CVSS5.8AI score0.00012EPSS

Exploits0References5

Positive Technologies•added 2026/05/04 12:0 a.m.•6 views

PT-2026-38251

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.4.22 Description OpenClaw derives loopback MCP owner context from spoofable server-issued bearer tokens in request headers. Non-owner loopback clients can bypass owner-gated operations by manipulating the...

8.5CVSS6AI score0.00012EPSS

Exploits0References17

RedhatCVE•added 2025/05/22 3:11 p.m.•3 views

CVE-2020-11597

An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can make an HTTP POST request and inject SQL statements in the user context of the db owner...

9.8CVSS7.7AI score0.02424EPSS

Exploits1References1

OSV•added 2020/04/06 10:15 p.m.•1 views

CVE-2020-11597

An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can make an HTTP POST request and inject SQL statements in the user context of the db owner...

9.8CVSS7.4AI score0.02424EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by