| CVE-2026-44109 |
critical |
9.8 |
9.8 |
|
|
|
29d ago |
OpenClaw: Feishu webhook and card-action validation now fail closed |
| CVE-2026-43585 |
critical |
9.8 |
9.8 |
|
|
|
29d ago |
OpenClaw: Gateway HTTP endpoints re-resolve bearer auth after SecretRef rotation |
| CVE-2026-43566 |
critical |
9.8 |
9.8 |
|
|
|
1mo ago |
OpenClaw: Heartbeat owner downgrade missed untrusted webhook wake events |
| CVE-2026-43534 |
critical |
9.8 |
9.8 |
|
|
|
1mo ago |
OpenClaw: Agent hook events could enqueue trusted system events from unsanitized external input |
| CVE-2026-41386 |
critical |
9.8 |
9.8 |
|
|
|
1mo ago |
OpenClaw: Unbound bootstrap setup codes allow privilege escalation during pairing |
| CVE-2026-44112 |
critical |
9.6 |
9.6 |
|
|
|
29d ago |
OpenClaw: OpenShell FS bridge writes stay pinned to the sandbox mount root |
| CVE-2026-41397 |
critical |
9.6 |
9.6 |
|
|
|
1mo ago |
OpenClaw: OpenShell Mirror Sync — Sandbox Escape via Unrestricted File Sync + Symlink Traversal |
| CVE-2026-43526 |
critical |
9.3 |
9.3 |
|
|
|
1mo ago |
OpenClaw: QQBot reply media URL handling could trigger SSRF and re-upload fetched bytes |
| CVE-2026-28395 |
critical |
9.1 |
9.1 |
|
|
|
3mo ago |
OpenClaw's Chrome extension relay binds publicly due to wildcard treated as loopback |
