| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-43533 | OpenClaw < 2026.4.10 - Arbitrary Local File Read via QQBot Media Tags | OpenClaw | OpenClaw | High | 8.6 | 2026-05-05 11:25:06 | Deep Dive |
| CVE-2026-43532 | OpenClaw 2026.4.7 < 2026.4.10 - Sandbox Media Normalization Bypass via Discord Event Cover Image | OpenClaw | OpenClaw | High | 7.7 | 2026-05-05 11:25:05 | Deep Dive |
| CVE-2026-43531 | OpenClaw < 2026.4.9 - Environment Variable Injection via Workspace .env File | OpenClaw | OpenClaw | High | 7.3 | 2026-05-05 11:25:02 | Deep Dive |
| CVE-2026-43530 | OpenClaw 2026.2.23 < 2026.4.12 - Weakened Exec Approval Binding via busybox and toybox Applet Execution | OpenClaw | OpenClaw | High | 8.8 | 2026-05-05 11:25:01 | Deep Dive |
| CVE-2026-43529 | OpenClaw < 2026.4.10 - Time-of-Check-Time-of-Use (TOCTOU) Race Condition in exec Script Preflight Validator | OpenClaw | OpenClaw | Low | 2.5 | 2026-05-05 11:25:00 | Deep Dive |
| CVE-2026-43528 | OpenClaw < 2026.4.14 - Redaction Bypass via sourceConfig and runtimeConfig Aliases | OpenClaw | OpenClaw | Medium | 6.5 | 2026-05-05 11:24:59 | Deep Dive |
| CVE-2026-43527 | OpenClaw < 2026.4.14 - Server-Side Request Forgery via Private Network Navigation | OpenClaw | OpenClaw | High | 7.7 | 2026-05-05 11:24:59 | Deep Dive |
| CVE-2026-43526 | OpenClaw < 2026.4.12 - Server-Side Request Forgery via QQBot Reply Media URL Handling | OpenClaw | OpenClaw | High | 8.2 | 2026-05-05 11:24:58 | Deep Dive |
| CVE-2026-42438 | OpenClaw 2026.4.9 < 2026.4.10 - Sender Policy Bypass in Host Media Attachment Reads | OpenClaw | OpenClaw | High | 7.7 | 2026-05-05 11:24:57 | Deep Dive |
| CVE-2026-42439 | OpenClaw < 2026.4.10 - SSRF Policy Bypass in Browser Tabs Action Routes | OpenClaw | OpenClaw | High | 8.5 | 2026-05-05 11:24:57 | Deep Dive |
| CVE-2026-42437 | OpenClaw 2026.4.9 < 2026.4.10 - Denial of Service via Oversized WebSocket Frames in Voice-call Realtime Path | OpenClaw | OpenClaw | High | 7.5 | 2026-05-05 11:24:56 | Deep Dive |
| CVE-2026-42436 | OpenClaw < 2026.4.14 - Internal Page Content Exposure via Browser Snapshot and Screenshot Routes | OpenClaw | OpenClaw | High | 7.7 | 2026-05-05 11:24:55 | Deep Dive |
| CVE-2026-42435 | OpenClaw 2026.2.22 < 2026.4.12 - Shell-Wrapper Detection Bypass via Environment Variable Assignment Injection | OpenClaw | OpenClaw | High | 8.8 | 2026-05-05 11:24:55 | Deep Dive |
| CVE-2026-42434 | OpenClaw 2026.4.5 < 2026.4.10 - Sandbox Escape via host Parameter Override in Exec Routing | OpenClaw | OpenClaw | High | 8.8 | 2026-05-05 11:24:54 | Deep Dive |
| CVE-2026-42433 | OpenClaw < 2026.4.10 - Unauthorized Matrix Profile Config Persistence Access via operator.write Message Tools | OpenClaw | OpenClaw | Medium | 6.5 | 2026-05-05 11:24:53 | Deep Dive |
| CVE-2026-42432 | OpenClaw < 2026.4.8 - Command Escalation via Node Pairing Reconnect Bypass | OpenClaw | OpenClaw | High | 7.8 | 2026-04-28 18:10:21 | Deep Dive |
| CVE-2026-42431 | OpenClaw < 2026.4.8 - Persistent Profile Mutation via node.invoke(browser.proxy) Bypass | OpenClaw | OpenClaw | High | 8.1 | 2026-04-28 18:10:20 | Deep Dive |
| CVE-2026-42430 | OpenClaw < 2026.4.8 - Strict Browser SSRF Bypass via Playwright Redirect Handling | OpenClaw | OpenClaw | Medium | 6.5 | 2026-04-28 18:10:19 | Deep Dive |
| CVE-2026-42428 | OpenClaw < 2026.4.8 - Missing Integrity Verification in Package Downloads | OpenClaw | OpenClaw | High | 7.1 | 2026-04-28 18:10:18 | Deep Dive |
| CVE-2026-42429 | OpenClaw < 2026.4.8 - Privilege Escalation via Gateway Plugin HTTP Authentication | OpenClaw | OpenClaw | High | 7.1 | 2026-04-28 18:10:18 | Deep Dive |