Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
12556
Total
848
Critical
3598
High
3935
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-41400 | MEDIUM | 5.3 | OpenClaw before 2026.3.31 contains an incomplete fix for CVE-2026-32062 where the voice-call component parses large WebSocket frames before start validation. Remote attackers can send oversized … | Apr 28, 2026 |
| CVE-2026-41399 | HIGH | 7.5 | OpenClaw before 2026.3.28 accepts unbounded concurrent unauthenticated WebSocket upgrades without pre-authentication budget allocation. Unauthenticated network attackers can exhaust socket and worker capacity to disrupt WebSocket … | Apr 28, 2026 |
| CVE-2026-41398 | MEDIUM | 4.6 | OpenClaw before 2026.4.2 contains an improper access control vulnerability in the iOS A2UI bridge that treats generic local-network pages as trusted origins. Attackers can inject … | Apr 28, 2026 |
| CVE-2026-41397 | MEDIUM | 6.8 | OpenClaw before 2026.3.31 contains a sandbox escape vulnerability allowing attackers to traverse directory boundaries through symlink exploitation during file synchronization operations. Remote attackers can bypass … | Apr 28, 2026 |
| CVE-2026-41396 | HIGH | 7.8 | OpenClaw before 2026.3.31 allows workspace .env files to override the OPENCLAW_BUNDLED_PLUGINS_DIR environment variable, compromising plugin trust verification. Attackers with control over workspace configuration can inject … | Apr 28, 2026 |
| CVE-2026-41395 | HIGH | 7.5 | OpenClaw before 2026.3.28 contains a webhook replay vulnerability in Plivo V3 signature verification that canonicalizes query ordering for signatures but hashes raw URLs for replay … | Apr 28, 2026 |
| CVE-2026-41394 | HIGH | 8.2 | OpenClaw before 2026.3.31 contains an authentication bypass vulnerability where unauthenticated plugin-auth HTTP routes receive operator runtime write scopes. Attackers can access these routes without authentication … | Apr 28, 2026 |
| CVE-2026-41393 | MEDIUM | 4.8 | OpenClaw before 2026.3.31 contains a wide-area discovery vulnerability allowing arbitrary tailnet peers to be accepted as DNS authorities. Attackers with same-tailnet position and CA-trusted endpoint … | Apr 28, 2026 |
| CVE-2026-41392 | MEDIUM | 6.7 | OpenClaw before 2026.3.31 contains an exec allowlist bypass vulnerability allowing attackers to inherit allowlist trust via shell init-file wrapper invocations. Attackers can exploit shell options … | Apr 28, 2026 |
| CVE-2026-41391 | MEDIUM | 5.3 | OpenClaw before 2026.3.31 fails to properly sanitize PIP_INDEX_URL and UV_INDEX_URL environment variables in host execution contexts, allowing attackers to redirect Python package-index traffic. Attackers can … | Apr 28, 2026 |
| CVE-2026-41390 | HIGH | 7.3 | OpenClaw before 2026.3.28 contains an exec allowlist bypass vulnerability where allow-always persistence fails to unwrap /usr/bin/script and similar wrappers before storing trust decisions. Attackers can … | Apr 28, 2026 |
| CVE-2026-41388 | MEDIUM | 6.5 | OpenClaw before 2026.3.31 contains a configuration management vulnerability where startup migration treats empty-array settings as missing values. Attackers can restart the application to rehydrate revoked … | Apr 28, 2026 |
| CVE-2026-41387 | HIGH | 7.8 | OpenClaw before 2026.3.22 contains an incomplete host environment variable sanitization vulnerability in host-env-security-policy.json and host-env-security.ts that allows package-manager environment overrides. Attackers can exploit approved exec … | Apr 28, 2026 |
| CVE-2026-41386 | CRITICAL | 9.1 | OpenClaw before 2026.3.22 contains a privilege escalation vulnerability where bootstrap setup codes are not bound to intended device roles and scopes during pairing. Attackers can … | Apr 28, 2026 |
| CVE-2026-41385 | MEDIUM | 6.5 | OpenClaw before 2026.3.31 stores Nostr privateKey as plaintext in configuration, allowing exposure through config.get method calls that bypass redaction mechanisms. Attackers can retrieve unredacted configuration … | Apr 28, 2026 |
| CVE-2026-41384 | HIGH | 7.8 | OpenClaw before 2026.3.24 contains an environment variable injection vulnerability in the CLI backend runner that allows attackers to inject malicious environment variables through workspace configuration. … | Apr 28, 2026 |
| CVE-2026-41383 | HIGH | 8.1 | OpenClaw before 2026.4.2 contains an arbitrary directory deletion vulnerability in mirror mode that allows attackers to delete remote directories by influencing remoteWorkspaceDir and remoteAgentWorkspaceDir configuration … | Apr 28, 2026 |
| CVE-2026-41382 | MEDIUM | 5.4 | OpenClaw before 2026.3.31 contains an authorization bypass vulnerability in Discord voice ingress that allows attackers to bypass channel and member allowlist restrictions. Attackers can exploit … | Apr 28, 2026 |
| CVE-2026-41381 | MEDIUM | 5.4 | OpenClaw before 2026.3.31 contains an access control bypass vulnerability in the Discord voice manager that allows attackers to bypass channel-level member access allowlist restrictions. Attackers … | Apr 28, 2026 |
| CVE-2026-41380 | HIGH | 7.3 | OpenClaw before 2026.3.28 contains an execution approval vulnerability in exec-approvals-allowlist.ts that allows allow-always persistence to trust wrapper carrier executables instead of invoked targets. Attackers can … | Apr 28, 2026 |
| CVE-2026-41379 | HIGH | 7.1 | OpenClaw before 2026.3.28 contains a privilege escalation vulnerability allowing authenticated operators with write permissions to access admin-class Talk Voice configuration persistence. Attackers with operator.write privileges … | Apr 28, 2026 |
| CVE-2026-41378 | HIGH | 8.8 | OpenClaw before 2026.3.31 contains a privilege escalation vulnerability allowing paired nodes with role=node to dispatch node.event agent requests with unrestricted gateway-side tool access. Attackers with … | Apr 28, 2026 |
| CVE-2026-41377 | MEDIUM | 4.6 | OpenClaw before 2026.3.31 contains a fail-open vulnerability in the plugin installation flow where security scan failures do not block installation. Attackers can exploit scan failures … | Apr 28, 2026 |
| CVE-2026-41376 | MEDIUM | 5.4 | OpenClaw before 2026.3.31 contains an allowlist bypass vulnerability in Matrix thread root and reply context handling that fails to properly validate message senders. Attackers can … | Apr 28, 2026 |
| CVE-2026-41375 | MEDIUM | 6.5 | OpenClaw before 2026.3.28 contains an authorization bypass vulnerability in the /phone arm and /phone disarm endpoints that fails to properly enforce operator.admin scope checks for … | Apr 28, 2026 |