Vulnerabilities in OpenClaw
537 resultsCVE-2026-27523MEDIUMOpenClaw < 2026.2.24 - Sandbox Bind Validation Bypass via Symlink-Parent Missing-Leaf PathsEPSS 0.3%CVE-2026-53827MEDIUMOpenClaw < 2026.5.2 - Credential Exposure via Model-Supplied Loopback URLs in message.action ForwardingEPSS 0.3%CVE-2026-43573MEDIUMOpenClaw < 2026.4.10 - SSRF Policy Bypass in Existing-Session Browser Interaction RoutesEPSS 0.3%CVE-2026-43577HIGHOpenClaw < 2026.4.9 - Arbitrary File Read via Browser Interaction RoutesEPSS 0.3%CVE-2026-41301MEDIUMOpenClaw 2026.3.22 < 2026.3.31 - Forged Nostr DM Pairing State Creation via Signature Verification BypassEPSS 0.3%CVE-2026-35674HIGHOpenClaw < 2026.5.18 - Scope Bypass via Inherited chat.send RouteEPSS 0.3%CVE-2026-41300MEDIUMOpenClaw < 2026.3.31 - Preservation of Attacker-Discovered Endpoints in Remote OnboardingEPSS 0.3%CVE-2026-43526HIGHOpenClaw < 2026.4.12 - Server-Side Request Forgery via QQBot Reply Media URL HandlingEPSS 0.3%CVE-2026-32914HIGHOpenClaw < 2026.3.12 - Insufficient Access Control in /config and /debug EndpointsEPSS 0.3%CVE-2026-41372MEDIUMOpenClaw < 2026.4.2 - Loopback Protection Bypass via Trailing-Dot Localhost in CDP DiscoveryEPSS 0.3%CVE-2026-32896MEDIUMOpenClaw < 2026.2.21 - Unauthenticated Webhook Access via Passwordless Fallback in BlueBubbles PluginEPSS 0.2%CVE-2026-53812MEDIUMOpenClaw < 2026.5.18 - Private-Network Navigation Bypass via Browser Act InteractionsEPSS 0.2%CVE-2026-32974HIGHOpenClaw < 2026.3.12 - Forged Event Injection via Feishu Webhook Verification TokenEPSS 0.2%CVE-2026-35637MEDIUMOpenClaw < 2026.3.22 - Premature Cite Expansion Before Authorization in Channel and DMEPSS 0.2%CVE-2026-53864HIGHOpenClaw < 2026.5.26 - Insufficient Environment Variable Sanitization in Node.js Control VariablesEPSS 0.2%CVE-2026-33575HIGHOpenClaw < 2026.3.12 - Long-lived Credential Exposure in Pairing Setup CodesEPSS 0.2%CVE-2026-45000LOWOpenClaw < 2026.4.20 - Server-Side Request Forgery via Browser CDP Profile CreationEPSS 0.2%CVE-2026-53854MEDIUMOpenClaw < 2026.4.25 - Privilege Escalation via ownerAllowFrom Wildcard Inheritance in Internal/Webchat CommandsEPSS 0.2%CVE-2026-35635MEDIUMOpenClaw < 2026.3.22 - Webhook Path Route Replacement Vulnerability in Synology ChatEPSS 0.2%CVE-2026-35629MEDIUMOpenClaw < 2026.3.25 - Server-Side Request Forgery via Unguarded Configured Base URLs in Channel ExtensionsEPSS 0.2%