CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 4 hours ago•9 views

CVE-2026-56695

OpenHarness ohmo gateway exposed by default to remote invocation via /resume and /summary, enabling attackers to enumerate and load arbitrary session snapshots by ID. This can grant access to private prompts, credentials, tool output, and file paths through shared gateway channels. Documented imp...

7.1CVSS6.1AI score

CVE•added 2026/04/28 6:10 p.m.•10 views

CVE-2026-42421

OpenClaw prior to 2026.4.8 suffers a session-management vulnerability in which existing WebSocket sessions persist after shared gateway token rotation. This allows an unauthorized party to maintain access to WebSocket connections even after token rotation, due to failure to disconnect existing sh...

5.4CVSS5.2AI score0.00186EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/04/28 6:10 p.m.•2 views

CVE-2026-42421 OpenClaw < 2026.4.8 - WebSocket Session Persistence via Shared Gateway Token Rotation

OpenClaw before 2026.4.8 contains a session management vulnerability where existing WebSocket sessions survive shared gateway token rotation. Attackers can maintain unauthorized access to WebSocket connections after token rotation by exploiting the failure to disconnect existing shared-token...

5.4CVSS5.2AI score0.00186EPSS

Github Security Blog•added 2026/04/09 5:36 p.m.•6 views

OpenClaw: Existing WS sessions survive shared gateway token rotation

Impact Existing WS sessions survive shared gateway token rotation. Rotating the shared gateway token did not disconnect existing shared-token WebSocket sessions. OpenClaw is a user-controlled local assistant. This advisory is scoped to the OpenClaw trust model and does not assume a multi-tenant...

5.4CVSS5.9AI score0.00186EPSS

Exploits0References2Affected Software1

OSV•added 2026/04/09 5:36 p.m.•2 views

GHSA-5H3F-885M-V22W OpenClaw: Existing WS sessions survive shared gateway token rotation

5.9CVSS5.8AI score0.00186EPSS

CNNVD•added 2026/03/29 12:0 a.m.•4 views

OpenClaw 安全漏洞

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a security vulnerability that stems from the direct embedding of long-term shared gateway credentials in the pairing setup code, which can be exploited by an attacker to recover and reuse credentials v...

8.6CVSS5.8AI score0.00246EPSS

CNVD•added 2026/03/24 12:0 a.m.•2 views

OpenClaw Authentication Bypass Vulnerability (CNVD-2026-14840)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an authentication bypass vulnerability that originates from allowing clients authenticated with a shared gateway token to connect as a role=node without device authentication. An attacker could use thi...

5.4CVSS5.9AI score0.00268EPSS

Exploits0References1

CVE•added 2026/03/21 12:42 a.m.•19 views

CVE-2026-32042

OpenClaw version set

Exploits0References3Affected Software1

ATTACKERKB•added 2026/03/21 12:42 a.m.•4 views

CVE-2026-32042

OpenClaw versions 2026.2.22 prior to 2026.2.25 contain a privilege escalation vulnerability allowing unpaired device identities to bypass operator pairing requirements and self-assign elevated operator scopes including operator.admin. Attackers with valid shared gateway authentication can present...

Exploits0References4Affected Software1

Cvelist•added 2026/03/21 12:42 a.m.•33 views

CVE-2026-32042 OpenClaw < 2026.2.25 - Privilege Escalation via Unpaired Device Identity in Shared Gateway Authentication

8.8CVSS0.00439EPSS

Vulnrichment•added 2026/03/21 12:42 a.m.•2 views

CVE-2026-32042 OpenClaw < 2026.2.25 - Privilege Escalation via Unpaired Device Identity in Shared Gateway Authentication

Positive Technologies•added 2026/03/21 12:0 a.m.•1 views

PT-2026-26725

OSV•added 2026/03/19 10:16 p.m.•5 views

Exploits0References10

CVE-2026-32001

OpenClaw versions prior to 2026.2.22 contain an authentication bypass vulnerability that allows clients authenticated with a shared gateway token to connect as role=node without device identity verification. Attackers can exploit this by claiming the node role during WebSocket handshake to inject...

5.4CVSS5.9AI score

EUVD•added 2026/03/19 10:6 p.m.•6 views

EUVD-2026-13253

5.4CVSS5.8AI score0.00268EPSS

NVD•added 2026/03/11 4:16 p.m.•5 views

CVE-2026-29777

Traefik is an HTTP reverse proxy and load balancer. Prior to 3.6.10, A tenant with write access to an HTTPRoute resource can inject backtick-delimited rule tokens into Traefik's router rule language via unsanitized header or query parameter match values. In shared gateway deployments, this can...

6.5CVSS0.00277EPSS

AlpineLinux•added 2026/03/11 3:54 p.m.•2 views

CVE-2026-29777

6.5CVSS5.8AI score0.00277EPSS

OSV•added 2026/03/03 11:32 p.m.•5 views

GHSA-RV2Q-F2H5-6XMG OpenClaw's Node role device-identity bypass allows unauthorized node.event injection

Summary A client authenticated with a shared gateway token could connect as role=node without device identity/pairing, then call node.event to trigger agent.request and voice.transcript flows. Affected Packages / Versions - Package: npm openclaw - Affected versions: = 2026.2.21-2 - Patched versio...

5.4CVSS6.1AI score0.00268EPSS

Exploits0References5

Snyk•added 2026/03/03 11:32 p.m.•2 views

Incorrect Authorization

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Incorrect Authorization via the WebSocket connect process. An attacker can inject unauthorized node.event messages by connecting with a shared gateway token and claiming role=node without...

5.4CVSS5.9AI score0.00268EPSS