Lucene search
K

5 matches found

EUVD
EUVD
added 2026/06/13 12:34 a.m.13 views

EUVD-2026-36612

OpenClaw before 2026.4.24 contains a token revocation vulnerability allowing callers with revoked slash tokens to continue executing commands during monitor refresh windows. Attackers can exploit stale token acceptance to invoke slash command behavior briefly after token revocation, potentially...

6.5CVSS5.3AI score0.00181EPSS
Exploits0References3
NVD
NVD
added 2026/06/12 10:16 p.m.19 views

CVE-2026-53824

OpenClaw before 2026.4.24 contains a token revocation vulnerability allowing callers with revoked slash tokens to continue executing commands during monitor refresh windows. Attackers can exploit stale token acceptance to invoke slash command behavior briefly after token revocation, potentially...

6.5CVSS0.00181EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/12 9:56 p.m.32 views

CVE-2026-53824 Mattermost plugin for OpenClaw < 2026.4.24 - Slash Token Revocation Lag via Monitor Refresh Delay

OpenClaw before 2026.4.24 contains a token revocation vulnerability allowing callers with revoked slash tokens to continue executing commands during monitor refresh windows. Attackers can exploit stale token acceptance to invoke slash command behavior briefly after token revocation, potentially...

6.5CVSS0.00181EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/12 9:56 p.m.10 views

CVE-2026-53824 Mattermost plugin for OpenClaw < 2026.4.24 - Slash Token Revocation Lag via Monitor Refresh Delay

OpenClaw before 2026.4.24 contains a token revocation vulnerability allowing callers with revoked slash tokens to continue executing commands during monitor refresh windows. Attackers can exploit stale token acceptance to invoke slash command behavior briefly after token revocation, potentially...

6.5CVSS5.3AI score0.00181EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.14 views

PT-2026-49028

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.4.24 Description An issue exists where callers with revoked slash tokens can continue executing commands during monitor refresh windows. This stale token acceptance allows attackers to briefly invoke slash comma...

6.5CVSS5.5AI score0.00181EPSS
Exploits0References5
Rows per page
Query Builder