Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
10692
Total
727
Critical
3080
High
3407
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-41913 | LOW | 3.7 | OpenClaw before 2026.4.4 contains a race condition vulnerability in shared-secret authentication that allows concurrent asynchronous requests to bypass the per-key rate-limit budget. Attackers can exploit … | Apr 28, 2026 |
| CVE-2026-41912 | HIGH | 7.6 | OpenClaw before 2026.4.8 contains a server-side request forgery policy bypass vulnerability allowing attackers to trigger navigations bypassing normal SSRF checks. Attackers can exploit browser interactions … | Apr 28, 2026 |
| CVE-2026-41911 | MEDIUM | 6.5 | OpenClaw before 2026.4.8 contains a filesystem policy bypass vulnerability in docx upload processing that allows local file reads outside workspace boundaries. Attackers can exploit upload_file … | Apr 28, 2026 |
| CVE-2026-41910 | MEDIUM | 4.3 | OpenClaw before 2026.4.8 omits owner-only enforcement for cross-channel allowlist writes in the /allowlist endpoint. An authorized non-owner sender can bypass access controls to perform allowlist … | Apr 28, 2026 |
| CVE-2026-41408 | MEDIUM | 4.3 | OpenClaw before 2026.3.31 contains a resource exhaustion vulnerability in media downloads that bypasses core safety limits for file size, count, and cleanup operations. Attackers can … | Apr 28, 2026 |
| CVE-2026-41407 | LOW | 3.7 | OpenClaw before 2026.4.2 contains a timing side channel vulnerability in shared-secret comparison call sites that use early length-mismatch checks instead of fixed-length comparison helpers. Attackers … | Apr 28, 2026 |
| CVE-2026-41406 | MEDIUM | 5.4 | OpenClaw before 2026.3.31 contains a sender allowlist bypass vulnerability that allows remote attackers to access restricted messages. Attackers can exploit fetched quoted, root, and thread … | Apr 28, 2026 |
| CVE-2026-41405 | HIGH | 7.5 | OpenClaw before 2026.3.31 parses MS Teams webhook request bodies before performing JWT validation, allowing unauthenticated attackers to trigger resource exhaustion. Remote attackers can send malicious … | Apr 28, 2026 |
| CVE-2026-41404 | HIGH | 8.8 | OpenClaw before 2026.3.31 contains an incomplete scope-clearing vulnerability in trusted-proxy authentication mode that allows operator.admin privilege escalation. Attackers can exploit this by declaring operator scopes … | Apr 28, 2026 |
| CVE-2026-41403 | LOW | 2.9 | OpenClaw before 2026.3.31 misclassifies proxied remote requests as loopback connections in the diffs viewer when allowRemoteViewer is disabled, allowing unauthorized access. Attackers can bypass access … | Apr 28, 2026 |
| CVE-2026-41402 | MEDIUM | 4.2 | OpenClaw before 2026.3.31 contains a scope bypass vulnerability in webhook replay cache deduplication that allows authenticated attackers to replay messages across sibling targets using the … | Apr 28, 2026 |
| CVE-2026-41400 | MEDIUM | 5.3 | OpenClaw before 2026.3.31 contains an incomplete fix for CVE-2026-32062 where the voice-call component parses large WebSocket frames before start validation. Remote attackers can send oversized … | Apr 28, 2026 |
| CVE-2026-41399 | HIGH | 7.5 | OpenClaw before 2026.3.28 accepts unbounded concurrent unauthenticated WebSocket upgrades without pre-authentication budget allocation. Unauthenticated network attackers can exhaust socket and worker capacity to disrupt WebSocket … | Apr 28, 2026 |
| CVE-2026-41398 | MEDIUM | 4.6 | OpenClaw before 2026.4.2 contains an improper access control vulnerability in the iOS A2UI bridge that treats generic local-network pages as trusted origins. Attackers can inject … | Apr 28, 2026 |
| CVE-2026-41397 | MEDIUM | 6.8 | OpenClaw before 2026.3.31 contains a sandbox escape vulnerability allowing attackers to traverse directory boundaries through symlink exploitation during file synchronization operations. Remote attackers can bypass … | Apr 28, 2026 |
| CVE-2026-41396 | HIGH | 7.8 | OpenClaw before 2026.3.31 allows workspace .env files to override the OPENCLAW_BUNDLED_PLUGINS_DIR environment variable, compromising plugin trust verification. Attackers with control over workspace configuration can inject … | Apr 28, 2026 |
| CVE-2026-41395 | HIGH | 7.5 | OpenClaw before 2026.3.28 contains a webhook replay vulnerability in Plivo V3 signature verification that canonicalizes query ordering for signatures but hashes raw URLs for replay … | Apr 28, 2026 |
| CVE-2026-41394 | HIGH | 8.2 | OpenClaw before 2026.3.31 contains an authentication bypass vulnerability where unauthenticated plugin-auth HTTP routes receive operator runtime write scopes. Attackers can access these routes without authentication … | Apr 28, 2026 |
| CVE-2026-41393 | MEDIUM | 4.8 | OpenClaw before 2026.3.31 contains a wide-area discovery vulnerability allowing arbitrary tailnet peers to be accepted as DNS authorities. Attackers with same-tailnet position and CA-trusted endpoint … | Apr 28, 2026 |
| CVE-2026-41392 | MEDIUM | 6.7 | OpenClaw before 2026.3.31 contains an exec allowlist bypass vulnerability allowing attackers to inherit allowlist trust via shell init-file wrapper invocations. Attackers can exploit shell options … | Apr 28, 2026 |
| CVE-2026-41391 | MEDIUM | 5.3 | OpenClaw before 2026.3.31 fails to properly sanitize PIP_INDEX_URL and UV_INDEX_URL environment variables in host execution contexts, allowing attackers to redirect Python package-index traffic. Attackers can … | Apr 28, 2026 |
| CVE-2026-41390 | HIGH | 7.3 | OpenClaw before 2026.3.28 contains an exec allowlist bypass vulnerability where allow-always persistence fails to unwrap /usr/bin/script and similar wrappers before storing trust decisions. Attackers can … | Apr 28, 2026 |
| CVE-2026-41388 | MEDIUM | 6.5 | OpenClaw before 2026.3.31 contains a configuration management vulnerability where startup migration treats empty-array settings as missing values. Attackers can restart the application to rehydrate revoked … | Apr 28, 2026 |
| CVE-2026-41387 | HIGH | 7.8 | OpenClaw before 2026.3.22 contains an incomplete host environment variable sanitization vulnerability in host-env-security-policy.json and host-env-security.ts that allows package-manager environment overrides. Attackers can exploit approved exec … | Apr 28, 2026 |
| CVE-2026-41386 | CRITICAL | 9.1 | OpenClaw before 2026.3.22 contains a privilege escalation vulnerability where bootstrap setup codes are not bound to intended device roles and scopes during pairing. Attackers can … | Apr 28, 2026 |