https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Wed, 24 Jun 2026 22:10:17 +0000 https://vulnerability.circl.lu/sighting/d3e2e939-fa2b-4d32-a734-05dcf99dd523/export {"uuid": "d3e2e939-fa2b-4d32-a734-05dcf99dd523", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53849", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mogoznygie2a", "content": "\ud83d\udfe0 CVE-2026-53849 - High (8.1)\n\nOpenClaw before 2026.5.7 contains a privilege escalation vulnerability where the allowFrom featur...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-53849/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-16T21:01:31.451241Z"} {"uuid": "d3e2e939-fa2b-4d32-a734-05dcf99dd523", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53849", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mogoznygie2a", "content": "\ud83d\udfe0 CVE-2026-53849 - High (8.1)\n\nOpenClaw before 2026.5.7 contains a privilege escalation vulnerability where the allowFrom featur...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-53849/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-16T21:01:31.451241Z"} https://vulnerability.circl.lu/sighting/d3e2e939-fa2b-4d32-a734-05dcf99dd523/export Tue, 16 Jun 2026 21:01:31 +0000 https://vulnerability.circl.lu/sighting/9365d883-f16b-4d4b-a439-322246ce8ec5/export {"uuid": "9365d883-f16b-4d4b-a439-322246ce8ec5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53843", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mogpypptkp2i", "content": "CVE-2026-53843 - OpenClaw\nCVE ID : CVE-2026-53843\n \n Published : June 16, 2026, 7:17 p.m. | 1\u00a0hour, 51\u00a0minutes ago\n \n Description : OpenClaw before 2026.5.26 contains an authorization bypass vulnerability where a surviving pairing-scoped device session can re-establish node to...", "creation_timestamp": "2026-06-16T21:18:52.441008Z"} {"uuid": "9365d883-f16b-4d4b-a439-322246ce8ec5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53843", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mogpypptkp2i", "content": "CVE-2026-53843 - OpenClaw\nCVE ID : CVE-2026-53843\n \n Published : June 16, 2026, 7:17 p.m. | 1\u00a0hour, 51\u00a0minutes ago\n \n Description : OpenClaw before 2026.5.26 contains an authorization bypass vulnerability where a surviving pairing-scoped device session can re-establish node to...", "creation_timestamp": "2026-06-16T21:18:52.441008Z"} https://vulnerability.circl.lu/sighting/9365d883-f16b-4d4b-a439-322246ce8ec5/export Tue, 16 Jun 2026 21:18:52 +0000 https://vulnerability.circl.lu/sighting/66b04677-e9f1-4dfb-8a3c-9faf7673ae5e/export {"uuid": "66b04677-e9f1-4dfb-8a3c-9faf7673ae5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53849", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mogqe2tzjc2x", "content": "CVE-2026-53849 - OpenClaw\nCVE ID : CVE-2026-53849\n \n Published : June 16, 2026, 7:17 p.m. | 1\u00a0hour, 51\u00a0minutes ago\n \n Description : OpenClaw before 2026.5.7 contains a privilege escalation vulnerability where the allowFrom feature improperly validates Discord account identity ...", "creation_timestamp": "2026-06-16T21:25:13.596688Z"} {"uuid": "66b04677-e9f1-4dfb-8a3c-9faf7673ae5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53849", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mogqe2tzjc2x", "content": "CVE-2026-53849 - OpenClaw\nCVE ID : CVE-2026-53849\n \n Published : June 16, 2026, 7:17 p.m. | 1\u00a0hour, 51\u00a0minutes ago\n \n Description : OpenClaw before 2026.5.7 contains a privilege escalation vulnerability where the allowFrom feature improperly validates Discord account identity ...", "creation_timestamp": "2026-06-16T21:25:13.596688Z"} https://vulnerability.circl.lu/sighting/66b04677-e9f1-4dfb-8a3c-9faf7673ae5e/export Tue, 16 Jun 2026 21:25:13 +0000 https://vulnerability.circl.lu/sighting/2a303474-e5eb-4513-8550-be3595b34e12/export {"uuid": "2a303474-e5eb-4513-8550-be3595b34e12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53843", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moh7qn6agy25", "content": "\ud83d\udfe0 CVE-2026-53843 - High (8.8)\n\nOpenClaw before 2026.5.26 contains an authorization bypass vulnerability where a surviving pairin...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-53843/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-17T02:00:43.038496Z"} {"uuid": "2a303474-e5eb-4513-8550-be3595b34e12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53843", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moh7qn6agy25", "content": "\ud83d\udfe0 CVE-2026-53843 - High (8.8)\n\nOpenClaw before 2026.5.26 contains an authorization bypass vulnerability where a surviving pairin...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-53843/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-17T02:00:43.038496Z"} https://vulnerability.circl.lu/sighting/2a303474-e5eb-4513-8550-be3595b34e12/export Wed, 17 Jun 2026 02:00:43 +0000 https://vulnerability.circl.lu/sighting/5854c924-8fdd-4418-b2ec-2aa85986fb2b/export {"uuid": "5854c924-8fdd-4418-b2ec-2aa85986fb2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53840", "type": "seen", "source": "https://gist.github.com/alon710/419f4d41351693c7c60ff49637269f97", "content": "# CVE-2026-53840: CVE-2026-53840: Sensitive Header Leakage via Cross-Origin Redirects in OpenClaw MCP Servers\n\n> **CVSS Score:** 6.0\n> **Published:** 2026-06-17\n> **Full Report:** https://cvereports.com/reports/CVE-2026-53840\n\n## Summary\nAn information disclosure vulnerability exists in OpenClaw before version 2026.5.12. The issue resides within the streamable-http Model Context Protocol (MCP) server integration, where the application client automatically forwards operator-configured custom headers during cross-origin HTTP redirects. If an attacker controls or compromises a configured remote MCP endpoint, they can issue redirect responses to exfiltrate highly sensitive data, such as API keys or tenant-routing credentials, to unauthorized external origins.\n\n## TL;DR\nOpenClaw versions prior to 2026.5.12 leak configured custom HTTP headers to third-party domains when an MCP server returns a redirect response. Attackers can leverage this behavior to capture sensitive API keys and tokens.\n\n## Technical Details\n\n- **CWE ID**: CWE-522: Insufficiently Protected Credentials\n- **Attack Vector**: Network\n- **CVSS v4.0 Base Score**: 6.0 (Medium)\n- **CVSS v3.1 Base Score**: 6.8 (Medium)\n- **EPSS Score**: 0.00223 (Percentile: 12.73%)\n- **Exploit Status**: No public PoCs available\n- **CISA KEV Status**: Not listed\n\n## Affected Systems\n\n- OpenClaw instances utilizing streamable-http Model Context Protocol servers configured with custom headers.\n- **openclaw**: < 2026.5.12 (Fixed in: `2026.5.12`)\n\n## Mitigation\n\n- Upgrade OpenClaw to version 2026.5.12 or newer to ensure origin validation checks are enforced on redirects.\n- Rotate all custom authentication credentials and API tokens configured within the streamable-http configuration parameters.\n- Audit existing Model Context Protocol configuration paths to verify that only highly trusted endpoints are integrated.\n\n**Remediation Steps:**\n1. Access the host system running OpenClaw and verify the currently installed version using package management tools.\n2. Update the openclaw dependency in your project to version 2026.5.12 using your package manager.\n3. Identify all configured credentials in the `mcp.servers` configuration file.\n4. Revoke the active tokens on the remote services, generate new secrets, and update the OpenClaw configuration file with the new credentials.\n5. Restart the OpenClaw service to apply the configuration updates and load the patched libraries.\n\n## References\n\n- [GitHub Security Advisory GHSA-rjxq-qqhf-8hwh](https://github.com/openclaw/openclaw/security/advisories/GHSA-rjxq-qqhf-8hwh)\n- [VulnCheck Security Advisory](https://www.vulncheck.com/advisories/openclaw-custom-header-leakage-via-mcp-streamable-http-cross-origin-redirects)\n- [OpenClaw Project Repository](https://github.com/openclaw/openclaw)\n- [NVD CVE-2026-53840 Portal](https://nvd.nist.gov/vuln/detail/CVE-2026-53840)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-53840) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-17T18:11:20.000000Z"} {"uuid": "5854c924-8fdd-4418-b2ec-2aa85986fb2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53840", "type": "seen", "source": "https://gist.github.com/alon710/419f4d41351693c7c60ff49637269f97", "content": "# CVE-2026-53840: CVE-2026-53840: Sensitive Header Leakage via Cross-Origin Redirects in OpenClaw MCP Servers\n\n> **CVSS Score:** 6.0\n> **Published:** 2026-06-17\n> **Full Report:** https://cvereports.com/reports/CVE-2026-53840\n\n## Summary\nAn information disclosure vulnerability exists in OpenClaw before version 2026.5.12. The issue resides within the streamable-http Model Context Protocol (MCP) server integration, where the application client automatically forwards operator-configured custom headers during cross-origin HTTP redirects. If an attacker controls or compromises a configured remote MCP endpoint, they can issue redirect responses to exfiltrate highly sensitive data, such as API keys or tenant-routing credentials, to unauthorized external origins.\n\n## TL;DR\nOpenClaw versions prior to 2026.5.12 leak configured custom HTTP headers to third-party domains when an MCP server returns a redirect response. Attackers can leverage this behavior to capture sensitive API keys and tokens.\n\n## Technical Details\n\n- **CWE ID**: CWE-522: Insufficiently Protected Credentials\n- **Attack Vector**: Network\n- **CVSS v4.0 Base Score**: 6.0 (Medium)\n- **CVSS v3.1 Base Score**: 6.8 (Medium)\n- **EPSS Score**: 0.00223 (Percentile: 12.73%)\n- **Exploit Status**: No public PoCs available\n- **CISA KEV Status**: Not listed\n\n## Affected Systems\n\n- OpenClaw instances utilizing streamable-http Model Context Protocol servers configured with custom headers.\n- **openclaw**: < 2026.5.12 (Fixed in: `2026.5.12`)\n\n## Mitigation\n\n- Upgrade OpenClaw to version 2026.5.12 or newer to ensure origin validation checks are enforced on redirects.\n- Rotate all custom authentication credentials and API tokens configured within the streamable-http configuration parameters.\n- Audit existing Model Context Protocol configuration paths to verify that only highly trusted endpoints are integrated.\n\n**Remediation Steps:**\n1. Access the host system running OpenClaw and verify the currently installed version using package management tools.\n2. Update the openclaw dependency in your project to version 2026.5.12 using your package manager.\n3. Identify all configured credentials in the `mcp.servers` configuration file.\n4. Revoke the active tokens on the remote services, generate new secrets, and update the OpenClaw configuration file with the new credentials.\n5. Restart the OpenClaw service to apply the configuration updates and load the patched libraries.\n\n## References\n\n- [GitHub Security Advisory GHSA-rjxq-qqhf-8hwh](https://github.com/openclaw/openclaw/security/advisories/GHSA-rjxq-qqhf-8hwh)\n- [VulnCheck Security Advisory](https://www.vulncheck.com/advisories/openclaw-custom-header-leakage-via-mcp-streamable-http-cross-origin-redirects)\n- [OpenClaw Project Repository](https://github.com/openclaw/openclaw)\n- [NVD CVE-2026-53840 Portal](https://nvd.nist.gov/vuln/detail/CVE-2026-53840)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-53840) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-17T18:11:20.000000Z"} https://vulnerability.circl.lu/sighting/5854c924-8fdd-4418-b2ec-2aa85986fb2b/export Wed, 17 Jun 2026 18:11:20 +0000 https://vulnerability.circl.lu/sighting/a5be1122-cba0-4b26-8824-0c332c982d57/export {"uuid": "a5be1122-cba0-4b26-8824-0c332c982d57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53840", "type": "seen", "source": "https://gist.github.com/alon710/4e321e5dcf74a8eaf0f99d54a40035e9", "content": "# CVE-2026-53840: CVE-2026-53840: Sensitive Header Leakage via Cross-Origin Redirects in OpenClaw MCP Servers\n\n> **CVSS Score:** 6.0\n> **Published:** 2026-06-17\n> **Full Report:** https://cvereports.com/reports/CVE-2026-53840\n\n## Summary\nAn information disclosure vulnerability exists in OpenClaw before version 2026.5.12. The issue resides within the streamable-http Model Context Protocol (MCP) server integration, where the application client automatically forwards operator-configured custom headers during cross-origin HTTP redirects. If an attacker controls or compromises a configured remote MCP endpoint, they can issue redirect responses to exfiltrate highly sensitive data, such as API keys or tenant-routing credentials, to unauthorized external origins.\n\n## TL;DR\nOpenClaw versions prior to 2026.5.12 leak configured custom HTTP headers to third-party domains when an MCP server returns a redirect response. Attackers can leverage this behavior to capture sensitive API keys and tokens.\n\n## Technical Details\n\n- **CWE ID**: CWE-522: Insufficiently Protected Credentials\n- **Attack Vector**: Network\n- **CVSS v4.0 Base Score**: 6.0 (Medium)\n- **CVSS v3.1 Base Score**: 6.8 (Medium)\n- **EPSS Score**: 0.00223 (Percentile: 12.73%)\n- **Exploit Status**: No public PoCs available\n- **CISA KEV Status**: Not listed\n\n## Affected Systems\n\n- OpenClaw instances utilizing streamable-http Model Context Protocol servers configured with custom headers.\n- **openclaw**: < 2026.5.12 (Fixed in: `2026.5.12`)\n\n## Mitigation\n\n- Upgrade OpenClaw to version 2026.5.12 or newer to ensure origin validation checks are enforced on redirects.\n- Rotate all custom authentication credentials and API tokens configured within the streamable-http configuration parameters.\n- Audit existing Model Context Protocol configuration paths to verify that only highly trusted endpoints are integrated.\n\n**Remediation Steps:**\n1. Access the host system running OpenClaw and verify the currently installed version using package management tools.\n2. Update the openclaw dependency in your project to version 2026.5.12 using your package manager.\n3. Identify all configured credentials in the `mcp.servers` configuration file.\n4. Revoke the active tokens on the remote services, generate new secrets, and update the OpenClaw configuration file with the new credentials.\n5. Restart the OpenClaw service to apply the configuration updates and load the patched libraries.\n\n## References\n\n- [GitHub Security Advisory GHSA-rjxq-qqhf-8hwh](https://github.com/openclaw/openclaw/security/advisories/GHSA-rjxq-qqhf-8hwh)\n- [VulnCheck Security Advisory](https://www.vulncheck.com/advisories/openclaw-custom-header-leakage-via-mcp-streamable-http-cross-origin-redirects)\n- [OpenClaw Project Repository](https://github.com/openclaw/openclaw)\n- [NVD CVE-2026-53840 Portal](https://nvd.nist.gov/vuln/detail/CVE-2026-53840)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-53840) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-18T20:02:03.000000Z"} {"uuid": "a5be1122-cba0-4b26-8824-0c332c982d57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53840", "type": "seen", "source": "https://gist.github.com/alon710/4e321e5dcf74a8eaf0f99d54a40035e9", "content": "# CVE-2026-53840: CVE-2026-53840: Sensitive Header Leakage via Cross-Origin Redirects in OpenClaw MCP Servers\n\n> **CVSS Score:** 6.0\n> **Published:** 2026-06-17\n> **Full Report:** https://cvereports.com/reports/CVE-2026-53840\n\n## Summary\nAn information disclosure vulnerability exists in OpenClaw before version 2026.5.12. The issue resides within the streamable-http Model Context Protocol (MCP) server integration, where the application client automatically forwards operator-configured custom headers during cross-origin HTTP redirects. If an attacker controls or compromises a configured remote MCP endpoint, they can issue redirect responses to exfiltrate highly sensitive data, such as API keys or tenant-routing credentials, to unauthorized external origins.\n\n## TL;DR\nOpenClaw versions prior to 2026.5.12 leak configured custom HTTP headers to third-party domains when an MCP server returns a redirect response. Attackers can leverage this behavior to capture sensitive API keys and tokens.\n\n## Technical Details\n\n- **CWE ID**: CWE-522: Insufficiently Protected Credentials\n- **Attack Vector**: Network\n- **CVSS v4.0 Base Score**: 6.0 (Medium)\n- **CVSS v3.1 Base Score**: 6.8 (Medium)\n- **EPSS Score**: 0.00223 (Percentile: 12.73%)\n- **Exploit Status**: No public PoCs available\n- **CISA KEV Status**: Not listed\n\n## Affected Systems\n\n- OpenClaw instances utilizing streamable-http Model Context Protocol servers configured with custom headers.\n- **openclaw**: < 2026.5.12 (Fixed in: `2026.5.12`)\n\n## Mitigation\n\n- Upgrade OpenClaw to version 2026.5.12 or newer to ensure origin validation checks are enforced on redirects.\n- Rotate all custom authentication credentials and API tokens configured within the streamable-http configuration parameters.\n- Audit existing Model Context Protocol configuration paths to verify that only highly trusted endpoints are integrated.\n\n**Remediation Steps:**\n1. Access the host system running OpenClaw and verify the currently installed version using package management tools.\n2. Update the openclaw dependency in your project to version 2026.5.12 using your package manager.\n3. Identify all configured credentials in the `mcp.servers` configuration file.\n4. Revoke the active tokens on the remote services, generate new secrets, and update the OpenClaw configuration file with the new credentials.\n5. Restart the OpenClaw service to apply the configuration updates and load the patched libraries.\n\n## References\n\n- [GitHub Security Advisory GHSA-rjxq-qqhf-8hwh](https://github.com/openclaw/openclaw/security/advisories/GHSA-rjxq-qqhf-8hwh)\n- [VulnCheck Security Advisory](https://www.vulncheck.com/advisories/openclaw-custom-header-leakage-via-mcp-streamable-http-cross-origin-redirects)\n- [OpenClaw Project Repository](https://github.com/openclaw/openclaw)\n- [NVD CVE-2026-53840 Portal](https://nvd.nist.gov/vuln/detail/CVE-2026-53840)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-53840) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-18T20:02:03.000000Z"} https://vulnerability.circl.lu/sighting/a5be1122-cba0-4b26-8824-0c332c982d57/export Thu, 18 Jun 2026 20:02:03 +0000 https://vulnerability.circl.lu/sighting/b855431f-f23a-4fd2-89a9-3598a41e7764/export {"uuid": "b855431f-f23a-4fd2-89a9-3598a41e7764", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53849", "type": "seen", "source": "https://gist.github.com/alon710/303180a576c9b715b0944ef26db287db", "content": "# CVE-2026-53849: CVE-2026-53849: Privilege Escalation and Authentication Bypass via Mutable Discord Display Names in OpenClaw allowFrom\n\n> **CVSS Score:** 8.6\n> **Published:** 2026-06-18\n> **Full Report:** https://cvereports.com/reports/CVE-2026-53849\n\n## Summary\nOpenClaw before version 2026.5.7 contains a security vulnerability where the allowFrom feature improperly validates Discord account identity using mutable display names rather than immutable user IDs. This allows remote attackers to bypass authorization controls and escalate privileges by changing their Discord display or global names to match a configured policy entry.\n\n## TL;DR\nOpenClaw before 2026.5.7 allows remote privilege escalation because its authentication policy checks mutable Discord display names instead of unique, immutable Snowflake IDs.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-290 (Authentication Bypass by Spoofing)\n- **Attack Vector**: Network (AV:N)\n- **CVSS Score**: 8.6 (High)\n- **EPSS Score**: 0.00213 (0.213%)\n- **Impact**: Privilege Escalation / Remote Command Execution\n- **Exploit Status**: Proof of Concept (PoC)\n- **KEV Status**: Not Listed\n\n## Affected Systems\n\n- openclaw\n- **openclaw**: < 2026.5.7 (Fixed in: `2026.5.7`)\n\n## Mitigation\n\n- Upgrade openclaw dependency to version 2026.5.7 or later\n- Migrate allowFrom configurations from display names to static, immutable 18-digit Discord Snowflake IDs\n- Implement channel access restrictions inside Discord settings\n\n**Remediation Steps:**\n1. Identify any configuration files utilizing allowFrom\n2. Replace text-based display names with the matching Discord Snowflake IDs\n3. Run npm install openclaw@2026.5.7 to update the package\n4. Restart the OpenClaw service and monitor logs to verify successful startup\n\n## References\n\n- [GitHub Security Advisory](https://github.com/openclaw/openclaw/security/advisories/GHSA-cw4q-gqg5-g38h)\n- [VulnCheck Security Portal](https://www.vulncheck.com/advisories/openclaw-privilege-escalation-via-mutable-discord-display-names-in-allowfrom)\n- [CVE.org Record](https://www.cve.org/CVERecord?id=CVE-2026-53849)\n- [NVD reference](https://nvd.nist.gov/vuln/detail/CVE-2026-53849)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-53849) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-19T06:12:11.000000Z"} {"uuid": "b855431f-f23a-4fd2-89a9-3598a41e7764", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53849", "type": "seen", "source": "https://gist.github.com/alon710/303180a576c9b715b0944ef26db287db", "content": "# CVE-2026-53849: CVE-2026-53849: Privilege Escalation and Authentication Bypass via Mutable Discord Display Names in OpenClaw allowFrom\n\n> **CVSS Score:** 8.6\n> **Published:** 2026-06-18\n> **Full Report:** https://cvereports.com/reports/CVE-2026-53849\n\n## Summary\nOpenClaw before version 2026.5.7 contains a security vulnerability where the allowFrom feature improperly validates Discord account identity using mutable display names rather than immutable user IDs. This allows remote attackers to bypass authorization controls and escalate privileges by changing their Discord display or global names to match a configured policy entry.\n\n## TL;DR\nOpenClaw before 2026.5.7 allows remote privilege escalation because its authentication policy checks mutable Discord display names instead of unique, immutable Snowflake IDs.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-290 (Authentication Bypass by Spoofing)\n- **Attack Vector**: Network (AV:N)\n- **CVSS Score**: 8.6 (High)\n- **EPSS Score**: 0.00213 (0.213%)\n- **Impact**: Privilege Escalation / Remote Command Execution\n- **Exploit Status**: Proof of Concept (PoC)\n- **KEV Status**: Not Listed\n\n## Affected Systems\n\n- openclaw\n- **openclaw**: < 2026.5.7 (Fixed in: `2026.5.7`)\n\n## Mitigation\n\n- Upgrade openclaw dependency to version 2026.5.7 or later\n- Migrate allowFrom configurations from display names to static, immutable 18-digit Discord Snowflake IDs\n- Implement channel access restrictions inside Discord settings\n\n**Remediation Steps:**\n1. Identify any configuration files utilizing allowFrom\n2. Replace text-based display names with the matching Discord Snowflake IDs\n3. Run npm install openclaw@2026.5.7 to update the package\n4. Restart the OpenClaw service and monitor logs to verify successful startup\n\n## References\n\n- [GitHub Security Advisory](https://github.com/openclaw/openclaw/security/advisories/GHSA-cw4q-gqg5-g38h)\n- [VulnCheck Security Portal](https://www.vulncheck.com/advisories/openclaw-privilege-escalation-via-mutable-discord-display-names-in-allowfrom)\n- [CVE.org Record](https://www.cve.org/CVERecord?id=CVE-2026-53849)\n- [NVD reference](https://nvd.nist.gov/vuln/detail/CVE-2026-53849)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-53849) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-19T06:12:11.000000Z"} https://vulnerability.circl.lu/sighting/b855431f-f23a-4fd2-89a9-3598a41e7764/export Fri, 19 Jun 2026 06:12:11 +0000 https://vulnerability.circl.lu/sighting/bda12b64-ecb3-4523-8002-790efb75abd8/export {"uuid": "bda12b64-ecb3-4523-8002-790efb75abd8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53846", "type": "seen", "source": "https://gist.github.com/alon710/98155855dc1ad0c23a241957e18cbd67", "content": "# CVE-2026-53846: CVE-2026-53846: Arbitrary Command Execution via Workspace .env Hijacking in OpenClaw\n\n> **CVSS Score:** 7.1\n> **Published:** 2026-06-18\n> **Full Report:** https://cvereports.com/reports/CVE-2026-53846\n\n## Summary\nOpenClaw versions prior to 2026.4.29 contain an untrusted search path vulnerability in the install helper module. By loading an untrusted workspace containing a crafted .env file, the application allows overriding critical environment variables, specifically npm_execpath, leading to arbitrary command execution in the context of the running process. This vulnerability is tracked as CVE-2026-53846 and GHSA-24vr-rprv-67rf.\n\n## TL;DR\nOpenClaw before 2026.4.29 allows arbitrary command execution when an operator loads a workspace containing a poisoned .env file that overrides the npm_execpath variable.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-426 (Untrusted Search Path)\n- **Attack Vector**: Local (AV:L)\n- **CVSS Score**: 7.1 (CVSS:3.1)\n- **Exploit Status**: Proof-of-Concept (PoC)\n- **KEV Status**: Not Listed\n- **Impact**: Arbitrary Code Execution (RCE)\n\n## Affected Systems\n\n- OpenClaw workspace initialization modules\n- OpenClaw runtime installer engine\n- **openclaw**: < 2026.4.29 (Fixed in: `2026.4.29`)\n\n## Mitigation\n\n- Upgrade to OpenClaw stable version 2026.4.29 or later to implement environment variable filtering.\n- Block external network access from local build agents and OpenClaw hosting processes.\n- Disable automatic dependency installation features in unvetted multi-tenant workspaces.\n\n**Remediation Steps:**\n1. Audit active OpenClaw deployments and identify instances below version 2026.4.29.\n2. Execute package manager update commands to upgrade 'openclaw' to '2026.4.29'.\n3. Validate configurations to ensure that workspace environment loading restricts 'npm_execpath' overrides.\n\n## References\n\n- [GitHub Security Advisory (GHSA-24vr-rprv-67rf)](https://github.com/openclaw/openclaw/security/advisories/GHSA-24vr-rprv-67rf)\n- [NVD CVE Entry](https://nvd.nist.gov/vuln/detail/CVE-2026-53846)\n- [OSV Advisory Details](https://osv.dev/vulnerability/GHSA-24vr-rprv-67rf)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-53846) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-19T07:42:00.000000Z"} {"uuid": "bda12b64-ecb3-4523-8002-790efb75abd8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53846", "type": "seen", "source": "https://gist.github.com/alon710/98155855dc1ad0c23a241957e18cbd67", "content": "# CVE-2026-53846: CVE-2026-53846: Arbitrary Command Execution via Workspace .env Hijacking in OpenClaw\n\n> **CVSS Score:** 7.1\n> **Published:** 2026-06-18\n> **Full Report:** https://cvereports.com/reports/CVE-2026-53846\n\n## Summary\nOpenClaw versions prior to 2026.4.29 contain an untrusted search path vulnerability in the install helper module. By loading an untrusted workspace containing a crafted .env file, the application allows overriding critical environment variables, specifically npm_execpath, leading to arbitrary command execution in the context of the running process. This vulnerability is tracked as CVE-2026-53846 and GHSA-24vr-rprv-67rf.\n\n## TL;DR\nOpenClaw before 2026.4.29 allows arbitrary command execution when an operator loads a workspace containing a poisoned .env file that overrides the npm_execpath variable.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-426 (Untrusted Search Path)\n- **Attack Vector**: Local (AV:L)\n- **CVSS Score**: 7.1 (CVSS:3.1)\n- **Exploit Status**: Proof-of-Concept (PoC)\n- **KEV Status**: Not Listed\n- **Impact**: Arbitrary Code Execution (RCE)\n\n## Affected Systems\n\n- OpenClaw workspace initialization modules\n- OpenClaw runtime installer engine\n- **openclaw**: < 2026.4.29 (Fixed in: `2026.4.29`)\n\n## Mitigation\n\n- Upgrade to OpenClaw stable version 2026.4.29 or later to implement environment variable filtering.\n- Block external network access from local build agents and OpenClaw hosting processes.\n- Disable automatic dependency installation features in unvetted multi-tenant workspaces.\n\n**Remediation Steps:**\n1. Audit active OpenClaw deployments and identify instances below version 2026.4.29.\n2. Execute package manager update commands to upgrade 'openclaw' to '2026.4.29'.\n3. Validate configurations to ensure that workspace environment loading restricts 'npm_execpath' overrides.\n\n## References\n\n- [GitHub Security Advisory (GHSA-24vr-rprv-67rf)](https://github.com/openclaw/openclaw/security/advisories/GHSA-24vr-rprv-67rf)\n- [NVD CVE Entry](https://nvd.nist.gov/vuln/detail/CVE-2026-53846)\n- [OSV Advisory Details](https://osv.dev/vulnerability/GHSA-24vr-rprv-67rf)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-53846) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-19T07:42:00.000000Z"} https://vulnerability.circl.lu/sighting/bda12b64-ecb3-4523-8002-790efb75abd8/export Fri, 19 Jun 2026 07:42:00 +0000 https://vulnerability.circl.lu/sighting/c07f9efb-db15-4472-bf4d-0ae669b92f79/export {"uuid": "c07f9efb-db15-4472-bf4d-0ae669b92f79", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53844", "type": "seen", "source": "https://gist.github.com/alon710/0d5ae642ba19f62c45be74e869a28ce0", "content": "# CVE-2026-53844: CVE-2026-53844: Missing Session Visibility Authorization Bypass in OpenClaw Shared Memory Search\n\n> **CVSS Score:** 6.5\n> **Published:** 2026-06-18\n> **Full Report:** https://cvereports.com/reports/CVE-2026-53844\n\n## Summary\nA missing authorization vulnerability (CWE-862) exists within the shared memory search interface (memory-wiki) of OpenClaw prior to version 2026.4.29. The application fails to apply visibility controls to search queries targeting `/api/memory-wiki/search`. Consequently, an authenticated attacker with low-level privileges can query the global index and exfiltrate sensitive memory entries belonging to other active or historical sessions without authorization.\n\n## TL;DR\nOpenClaw versions before 2026.4.29 fail to enforce authorization checks (SessionVisibilityGuard) on its shared memory search API endpoint. This omission allows any low-privileged authenticated user to query and retrieve private memory and configuration logs from other active or historic sessions.\n\n## Technical Details\n\n- **CWE ID**: CWE-862: Missing Authorization\n- **Attack Vector**: Network\n- **CVSS v3.1 Score**: 6.5 (Medium)\n- **CVSS v4.0 Score**: 6.0 (Medium)\n- **EPSS Score**: 0.0021\n- **Impact**: High Confidentiality Loss\n- **Exploit Status**: No public proof-of-concept exists\n- **CISA KEV Status**: Not listed\n\n## Affected Systems\n\n- OpenClaw instances running versions < 2026.4.29\n- **OpenClaw**: < 2026.4.29 (Fixed in: `2026.4.29`)\n\n## Mitigation\n\n- Upgrade OpenClaw deployment to version 2026.4.29 or newer.\n- Restrict network access to the API endpoints using external authorization proxies or API gateways.\n- Deploy Web Application Firewall rules to block wildcard query strings on the shared search path.\n\n**Remediation Steps:**\n1. Identify all OpenClaw instances running versions older than 2026.4.29.\n2. Pull the updated software version via the official registry or package manager.\n3. Verify that routes/memoryWiki.js incorporates the SessionVisibilityGuard middleware.\n4. Restart the OpenClaw service and perform validation tests using a low-privileged account to confirm that search results are restricted to the local session.\n\n## References\n\n- [OpenClaw Security Advisory (GHSA-72fw-cqh5-f324)](https://github.com/openclaw/openclaw/security/advisories/GHSA-72fw-cqh5-f324)\n- [VulnCheck Advisory for OpenClaw](https://www.vulncheck.com/advisories/openclaw-session-visibility-check-bypass-in-shared-memory-search)\n- [CVE.org CVE-2026-53844 Record](https://www.cve.org/CVERecord?id=CVE-2026-53844)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-53844) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-19T09:11:18.000000Z"} {"uuid": "c07f9efb-db15-4472-bf4d-0ae669b92f79", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53844", "type": "seen", "source": "https://gist.github.com/alon710/0d5ae642ba19f62c45be74e869a28ce0", "content": "# CVE-2026-53844: CVE-2026-53844: Missing Session Visibility Authorization Bypass in OpenClaw Shared Memory Search\n\n> **CVSS Score:** 6.5\n> **Published:** 2026-06-18\n> **Full Report:** https://cvereports.com/reports/CVE-2026-53844\n\n## Summary\nA missing authorization vulnerability (CWE-862) exists within the shared memory search interface (memory-wiki) of OpenClaw prior to version 2026.4.29. The application fails to apply visibility controls to search queries targeting `/api/memory-wiki/search`. Consequently, an authenticated attacker with low-level privileges can query the global index and exfiltrate sensitive memory entries belonging to other active or historical sessions without authorization.\n\n## TL;DR\nOpenClaw versions before 2026.4.29 fail to enforce authorization checks (SessionVisibilityGuard) on its shared memory search API endpoint. This omission allows any low-privileged authenticated user to query and retrieve private memory and configuration logs from other active or historic sessions.\n\n## Technical Details\n\n- **CWE ID**: CWE-862: Missing Authorization\n- **Attack Vector**: Network\n- **CVSS v3.1 Score**: 6.5 (Medium)\n- **CVSS v4.0 Score**: 6.0 (Medium)\n- **EPSS Score**: 0.0021\n- **Impact**: High Confidentiality Loss\n- **Exploit Status**: No public proof-of-concept exists\n- **CISA KEV Status**: Not listed\n\n## Affected Systems\n\n- OpenClaw instances running versions < 2026.4.29\n- **OpenClaw**: < 2026.4.29 (Fixed in: `2026.4.29`)\n\n## Mitigation\n\n- Upgrade OpenClaw deployment to version 2026.4.29 or newer.\n- Restrict network access to the API endpoints using external authorization proxies or API gateways.\n- Deploy Web Application Firewall rules to block wildcard query strings on the shared search path.\n\n**Remediation Steps:**\n1. Identify all OpenClaw instances running versions older than 2026.4.29.\n2. Pull the updated software version via the official registry or package manager.\n3. Verify that routes/memoryWiki.js incorporates the SessionVisibilityGuard middleware.\n4. Restart the OpenClaw service and perform validation tests using a low-privileged account to confirm that search results are restricted to the local session.\n\n## References\n\n- [OpenClaw Security Advisory (GHSA-72fw-cqh5-f324)](https://github.com/openclaw/openclaw/security/advisories/GHSA-72fw-cqh5-f324)\n- [VulnCheck Advisory for OpenClaw](https://www.vulncheck.com/advisories/openclaw-session-visibility-check-bypass-in-shared-memory-search)\n- [CVE.org CVE-2026-53844 Record](https://www.cve.org/CVERecord?id=CVE-2026-53844)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-53844) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-19T09:11:18.000000Z"} https://vulnerability.circl.lu/sighting/c07f9efb-db15-4472-bf4d-0ae669b92f79/export Fri, 19 Jun 2026 09:11:18 +0000 https://vulnerability.circl.lu/sighting/8c8601ef-f56b-494c-b16a-4666bb5d72db/export {"uuid": "8c8601ef-f56b-494c-b16a-4666bb5d72db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53844", "type": "seen", "source": "https://gist.github.com/alon710/e9f4de9ef468ec9331512207326f51c3", "content": "# CVE-2026-53844: CVE-2026-53844: Missing Session Visibility Authorization Bypass in OpenClaw Shared Memory Search\n\n> **CVSS Score:** 6.5\n> **Published:** 2026-06-18\n> **Full Report:** https://cvereports.com/reports/CVE-2026-53844\n\n## Summary\nA missing authorization vulnerability (CWE-862) exists within the shared memory search interface (memory-wiki) of OpenClaw prior to version 2026.4.29. The application fails to apply visibility controls to search queries targeting `/api/memory-wiki/search`. Consequently, an authenticated attacker with low-level privileges can query the global index and exfiltrate sensitive memory entries belonging to other active or historical sessions without authorization.\n\n## TL;DR\nOpenClaw versions before 2026.4.29 fail to enforce authorization checks (SessionVisibilityGuard) on its shared memory search API endpoint. This omission allows any low-privileged authenticated user to query and retrieve private memory and configuration logs from other active or historic sessions.\n\n## Technical Details\n\n- **CWE ID**: CWE-862: Missing Authorization\n- **Attack Vector**: Network\n- **CVSS v3.1 Score**: 6.5 (Medium)\n- **CVSS v4.0 Score**: 6.0 (Medium)\n- **EPSS Score**: 0.0021\n- **Impact**: High Confidentiality Loss\n- **Exploit Status**: No public proof-of-concept exists\n- **CISA KEV Status**: Not listed\n\n## Affected Systems\n\n- OpenClaw instances running versions < 2026.4.29\n- **OpenClaw**: < 2026.4.29 (Fixed in: `2026.4.29`)\n\n## Mitigation\n\n- Upgrade OpenClaw deployment to version 2026.4.29 or newer.\n- Restrict network access to the API endpoints using external authorization proxies or API gateways.\n- Deploy Web Application Firewall rules to block wildcard query strings on the shared search path.\n\n**Remediation Steps:**\n1. Identify all OpenClaw instances running versions older than 2026.4.29.\n2. Pull the updated software version via the official registry or package manager.\n3. Verify that routes/memoryWiki.js incorporates the SessionVisibilityGuard middleware.\n4. Restart the OpenClaw service and perform validation tests using a low-privileged account to confirm that search results are restricted to the local session.\n\n## References\n\n- [OpenClaw Security Advisory (GHSA-72fw-cqh5-f324)](https://github.com/openclaw/openclaw/security/advisories/GHSA-72fw-cqh5-f324)\n- [VulnCheck Advisory for OpenClaw](https://www.vulncheck.com/advisories/openclaw-session-visibility-check-bypass-in-shared-memory-search)\n- [CVE.org CVE-2026-53844 Record](https://www.cve.org/CVERecord?id=CVE-2026-53844)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-53844) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-19T09:22:12.000000Z"} {"uuid": "8c8601ef-f56b-494c-b16a-4666bb5d72db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53844", "type": "seen", "source": "https://gist.github.com/alon710/e9f4de9ef468ec9331512207326f51c3", "content": "# CVE-2026-53844: CVE-2026-53844: Missing Session Visibility Authorization Bypass in OpenClaw Shared Memory Search\n\n> **CVSS Score:** 6.5\n> **Published:** 2026-06-18\n> **Full Report:** https://cvereports.com/reports/CVE-2026-53844\n\n## Summary\nA missing authorization vulnerability (CWE-862) exists within the shared memory search interface (memory-wiki) of OpenClaw prior to version 2026.4.29. The application fails to apply visibility controls to search queries targeting `/api/memory-wiki/search`. Consequently, an authenticated attacker with low-level privileges can query the global index and exfiltrate sensitive memory entries belonging to other active or historical sessions without authorization.\n\n## TL;DR\nOpenClaw versions before 2026.4.29 fail to enforce authorization checks (SessionVisibilityGuard) on its shared memory search API endpoint. This omission allows any low-privileged authenticated user to query and retrieve private memory and configuration logs from other active or historic sessions.\n\n## Technical Details\n\n- **CWE ID**: CWE-862: Missing Authorization\n- **Attack Vector**: Network\n- **CVSS v3.1 Score**: 6.5 (Medium)\n- **CVSS v4.0 Score**: 6.0 (Medium)\n- **EPSS Score**: 0.0021\n- **Impact**: High Confidentiality Loss\n- **Exploit Status**: No public proof-of-concept exists\n- **CISA KEV Status**: Not listed\n\n## Affected Systems\n\n- OpenClaw instances running versions < 2026.4.29\n- **OpenClaw**: < 2026.4.29 (Fixed in: `2026.4.29`)\n\n## Mitigation\n\n- Upgrade OpenClaw deployment to version 2026.4.29 or newer.\n- Restrict network access to the API endpoints using external authorization proxies or API gateways.\n- Deploy Web Application Firewall rules to block wildcard query strings on the shared search path.\n\n**Remediation Steps:**\n1. Identify all OpenClaw instances running versions older than 2026.4.29.\n2. Pull the updated software version via the official registry or package manager.\n3. Verify that routes/memoryWiki.js incorporates the SessionVisibilityGuard middleware.\n4. Restart the OpenClaw service and perform validation tests using a low-privileged account to confirm that search results are restricted to the local session.\n\n## References\n\n- [OpenClaw Security Advisory (GHSA-72fw-cqh5-f324)](https://github.com/openclaw/openclaw/security/advisories/GHSA-72fw-cqh5-f324)\n- [VulnCheck Advisory for OpenClaw](https://www.vulncheck.com/advisories/openclaw-session-visibility-check-bypass-in-shared-memory-search)\n- [CVE.org CVE-2026-53844 Record](https://www.cve.org/CVERecord?id=CVE-2026-53844)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-53844) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-19T09:22:12.000000Z"} https://vulnerability.circl.lu/sighting/8c8601ef-f56b-494c-b16a-4666bb5d72db/export Fri, 19 Jun 2026 09:22:12 +0000