CVE-2026-41377 OpenClaw < 2026.3.31 - Fail-Open Security Scan Bypass in Plugin Installation

OpenClaw before 2026.3.31 contains a fail-open vulnerability in the plugin installation flow where security scan failures do not block installation. Attackers can exploit scan failures to install untrusted plugins when operators proceed despite visible scan warnings...

OpenClaw: Security Scan Failure Does Not Block Plugin Installation (Fail-Open)

Summary Security Scan Failure Does Not Block Plugin Installation Fail-Open Current Maintainer Triage - Status: open - Normalized severity: low - Assessment: Real in shipped v2026.3.28 plugin install flow, but low severity fits because it still requires an operator to choose installation of an...

EUVD-2025-60995

Migration Workbench DX Workbench in SAP NetWeaver Application Server for ABAP fails to trigger a malware scan when an attacker with administrative privileges uploads files to the application server. An attacker could leverage this and upload a malicious file into the system. This results in a low...

CVE-2025-39957 wifi: mac80211: increase scan_ies_len for S1G

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: increase scanieslen for S1G Currently the S1G capability element is not taken into account for the scanieslen, which leads to a buffer length validation failure in ieee80211prephwscan and subsequent WARN in...

NetScaler-13.1-EPA scan failed with "Error while parsing client security configuration"

EPA scan failed with "Error while parsing client security configuration" in EPA log. ---------------------------- 2025-02-19 09:03:50.706 | 21708 | DEBUG | D | PRE AUTH EPA | token: |^M 2025-02-19 09:03:50.706 | 21708 | DEBUG | D | PRE AUTH EPA | Policy MACADDRanyofF8BXXXXXX28A returned 2004 |^M...

Occasional EPA scan failures may occur due to incomplete downloading of the Client EPA plugin

Occasional failures in downloading the Client EPA plugin can result in the EPA scan not functioning properly...

EPA Scan failure on MacOS with error message "Error during unzipping libraries"

EPA scan failed on MacOS client withfollowing errors in "/Library/Application Support/Citrix/EPAPlugin/ " logs: Error during unzipping libraries NSAppleScriptErrorAppName = CitrixEndpointAnalysis; NSAppleScriptErrorBriefMessage = "unzip: cannot find or open 1/Library/Application...

How to bypass EPA check on mobile device using nfactor Authentication

This article describe how to bypass EPA check on Mobile device using nFactor Authentication.Mobile devices will not run the EPA scan if you configure Pre-authentication for EPA scan. Mobile device can always hit policy and it will fail...

EPA scan Fails. Error: Failed sending epaq

Error: Failed sending Epaq We will see following error in plugin logs: 2022-01-14 07:03:05.860 | Tid: 10876 | ERROR | nsstartepa | 1030 | Failed sending GET epaq. Return code: -4 2022-01-14 07:03:05.860 | Tid: 10876 | DEBUG | nsstartepa returning Failed sending epaq Following message will be seen...

EPA scan getting failed through Safari Full Screen Mode on MacOS

When Safari browser is opened in Full Screen mode on MAC OS, The EPA Scan is getting failed. No issues with Safari in Window mode...

Scan Interference

Scan interference is best defined as when traffic from our scanners gets blocked, filtered, dropped, or modified in response to some sort of active protection system not recognizing our traffic. Once our scanners are flagged as an intruder, the clients environment is no longer accessible, which...

PostAuth EPA scan is not initiated with Advance session policies, however works with Classic policies

If the session profile is bound to the session profile with classic expression the EPA scan is initiated the client machine is checked for the EPA checks. If you use advance expression to bind session profile to the session policy, the EPA check will not be initiated and the users will be...

NetScaler Gateway EPA Scan Fails When Checking for "Windows Update" on Client Machine

When NetScaler Gateway EPA scan is configured to validate if the Windows update on client machine has been performed within X days, the scan fails on client machine...

Error in handleInterruptedCoalesceLeaf when trying to scan the Storage on XenServer

Error in XenCenter - SR failed to complete the operation Error in /var/log/SMlog -25840 2012-12-14 10:52:35.402274 lock: released /var/lock/sm/lvm-579fdc35-f120-398e-397e-b12179c9531c/83b6fcfd-e9ed-432b-b662-d8d28f9ccca525840 2012-12-14 10:52:35.402380 lock: closed...

Microsoft Windows Installed Hotfixes

Using the supplied credentials, Nessus was unable to log into the remote Windows host, enumerate installed hotfixes, or store them in its knowledge base for other plugins to use. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if...