6 matches found
CVE-2026-28481
OpenClaw (npm package) up to version 2026.1.30 contains an information disclosure vulnerability in the MS Teams attachment downloader (extension must be enabled). When retrying downloads after 401/403 responses, the code may send Authorization: Bearer tokens to untrusted hosts that match a permis...
CVE-2026-25474 OpenClaw has a Telegram webhook request forgery (missing `channels.telegram.webhookSecret`) → auth bypass
OpenClaw is a personal AI assistant. In versions 2026.1.30 and below, if channels.telegram.webhookSecret is not set when in Telegram webhook mode, OpenClaw may accept webhook HTTP requests without verifying Telegram’s secret token header. In deployments where the webhook endpoint is reachable by ...
CVE-2026-25475
OpenClaw is a personal AI assistant. Prior to version 2026.1.30, the isValidMedia function in src/media/parse.ts allows arbitrary file paths including absolute paths, home directory paths, and directory traversal sequences. An agent can read any file on the system by outputting MEDIA:/path/to/fil...
CVE-2026-25475
OpenClaw is a personal AI assistant. Prior to version 2026.1.30, the isValidMedia function in src/media/parse.ts allows arbitrary file paths including absolute paths, home directory paths, and directory traversal sequences. An agent can read any file on the system by outputting MEDIA:/path/to/fil...
EUVD-2026-5363
OpenClaw is a personal AI assistant. Prior to version 2026.1.30, the isValidMedia function in src/media/parse.ts allows arbitrary file paths including absolute paths, home directory paths, and directory traversal sequences. An agent can read any file on the system by outputting MEDIA:/path/to/fil...
PT-2026-6291
Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.1.30 Description OpenClaw is a personal AI assistant. The isValidMedia function in src/media/parse.ts allows arbitrary file paths, including absolute paths, home directory paths, and directory traversal sequence...