|
2631
|
6.5 |
MEDIUM
Network
|
openclaw
|
openclaw
|
OpenClaw versions 2026.2.6 through 2026.3.24 contain a path traversal vulnerability in the Feishu extension resolveUploadInput function that bypasses file-system sandbox restrictions. Attackers can e…
|
CWE-22
Path Traversal
|
CVE-2026-41363
|
2026-04-29 03:46 |
2026-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2632
|
8.1 |
HIGH
Network
|
openclaw
|
openclaw
|
OpenClaw before 2026.3.31 contains a symlink following vulnerability in SSH sandbox tar upload that allows remote attackers to write arbitrary files. Attackers can exploit this by uploading tar archi…
|
CWE-59
Link Following
|
CVE-2026-41364
|
2026-04-29 03:45 |
2026-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2633
|
5.5 |
MEDIUM
Local
|
openclaw
|
openclaw
|
OpenClaw before 2026.3.31 contains a local roots self-whitelisting vulnerability in appendLocalMediaParentRoots that allows model-initiated arbitrary host file read. Attackers can exploit improper me…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2026-41366
|
2026-04-29 03:45 |
2026-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2634
|
5.0 |
MEDIUM
Network
|
openclaw
|
openclaw
|
OpenClaw versions 2026.2.14 through 2026.3.24 fail to consistently apply guild and channel policy gates to Discord button and component interactions. Attackers can trigger privileged component action…
|
CWE-863
Incorrect Authorization
|
CVE-2026-41367
|
2026-04-29 03:45 |
2026-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2635
|
6.5 |
MEDIUM
Network
|
openclaw
|
openclaw
|
OpenClaw before 2026.3.28 contains an environment variable disclosure vulnerability in the jq safe-bin policy that fails to block the $ENV filter. Attackers can bypass safe-bin restrictions by using …
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2026-41368
|
2026-04-29 03:44 |
2026-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2636
|
6.5 |
MEDIUM
Network
|
openclaw
|
openclaw
|
OpenClaw before 2026.3.31 contains insufficient environment variable sanitization in host exec operations, failing to filter package, registry, Docker, compiler, and TLS override variables. Attackers…
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2026-41369
|
2026-04-29 03:44 |
2026-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2637
|
8.5 |
HIGH
Network
|
openclaw
|
openclaw
|
OpenClaw before 2026.3.28 contains a privilege escalation vulnerability in chat.send that allows write-scoped gateway callers to trigger admin-only session reset operations. Attackers can rotate targ…
|
CWE-863
Incorrect Authorization
|
CVE-2026-41371
|
2026-04-29 03:44 |
2026-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2638
|
5.8 |
MEDIUM
Network
|
openclaw
|
openclaw
|
OpenClaw before 2026.4.2 fails to normalize trailing-dot localhost hosts in remote CDP discovery responses, allowing bypass of loopback protections. Attackers can craft hostile discovery responses re…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2026-41372
|
2026-04-29 03:43 |
2026-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2639
|
8.8 |
HIGH
Network
|
jpcert
|
logontracer
|
An OS command Injection issue exists in LogonTracer prior to v2.0.0. An arbitrary OS command may be executed by a logged-in user.
|
CWE-78
OS Command
|
CVE-2026-33277
|
2026-04-29 03:43 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2640
|
7.4 |
HIGH
Network
|
apache
|
thrift
|
Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift.
This issue affects Apache Thrift: before 0.23.0.
Users are recommended to upgrade to version 0.23.0, which fixe…
|
CWE-297
CWE-306
Improper Validation of Certificate with Host Mismatch
Missing Authentication for Critical Function
|
CVE-2026-41603
|
2026-04-29 03:42 |
2026-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
