CVE-2026-4946 - High
๐ CVE-2026-4946 - High (8.8)
Ghidra versions prior to 12.0.3 improperly process annotation directives embedded in automaticall...
www.thehackerwire.com/vulnerability/CVE-2026-4...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
HIGH severity in parisneo/lollms (โค2.2.0): /api/files/extract-text endpoint lacks auth, risking DoS & data exposure. Restrict access & monitor until patched. radar.offseq.com/threat/cve-2026-0558-cwe... #OffSeq #Vulnerability #Security
CVE-2026-0558 - High
๐ CVE-2026-0558 - High (7.5)
A vulnerability in parisneo/lollms, up to and including version 2.2.0, allows unauthenticated use...
www.thehackerwire.com/vulnerability/CVE-2026-0...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-0562 - High
๐ CVE-2026-0562 - High (8.3)
A critical security vulnerability in parisneo/lollms versions up to 2.2.0 allows any authenticate...
www.thehackerwire.com/vulnerability/CVE-2026-0...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-0560 - High
๐ CVE-2026-0560 - High (7.5)
A Server-Side Request Forgery (SSRF) vulnerability exists in parisneo/lollms versions prior to 2....
www.thehackerwire.com/vulnerability/CVE-2026-0...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
Vulnerability CVE-2026-3055 has received a comment on Vulnerability-Lookup:
Seems to be exploited and confirmed by Defused
vulnerability.circl.lu/comment/fdd15828-339e-47...
#VulnerabilityLookup #Vulnerability #Cybersecurity #bot
CVE-2026-34005 - High
๐ CVE-2026-34005 - High (8.8)
In Sofia on Xiongmai DVR/NVR (AHB7008T-MH-V2 and NBD7024H-P) 4.03.R11 devices, root OS command in...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-34005 - High
๐ CVE-2026-34005 - High (8.8)
In Sofia on Xiongmai DVR/NVR (AHB7008T-MH-V2 and NBD7024H-P) 4.03.R11 devices, root OS command in...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32915 - High
๐ CVE-2026-32915 - High (8.8)
OpenClaw before 2026.3.11 contains a sandbox boundary bypass vulnerability allowing leaf subagent...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32914 - High
๐ CVE-2026-32914 - High (8.8)
OpenClaw before 2026.3.12 contains an insufficient access control vulnerability in the /config an...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32918 - High
๐ CVE-2026-32918 - High (8.4)
OpenClaw before 2026.3.11 contains a session sandbox escape vulnerability in the session_status t...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32924 - Critical
๐ด CVE-2026-32924 - Critical (9.8)
OpenClaw before 2026.3.12 contains an authorization bypass vulnerability where Feishu reaction ev...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32922 - Critical
๐ด CVE-2026-32922 - Critical (9.9)
OpenClaw before 2026.3.11 contains a privilege escalation vulnerability in device.token.rotate th...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32918 - High
๐ CVE-2026-32918 - High (8.4)
OpenClaw before 2026.3.11 contains a session sandbox escape vulnerability in the session_status t...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32918 - High
๐ CVE-2026-32918 - High (8.4)
OpenClaw before 2026.3.11 contains a session sandbox escape vulnerability in the session_status t...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32978 - High
๐ CVE-2026-32978 - High (8)
OpenClaw before 2026.3.11 contains an approval integrity vulnerability where system.run approvals...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32975 - Critical
๐ด CVE-2026-32975 - Critical (9.8)
OpenClaw before 2026.3.12 contains a weak authorization vulnerability in Zalouser allowlist mode ...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32918 - High
๐ CVE-2026-32918 - High (8.4)
OpenClaw before 2026.3.11 contains a session sandbox escape vulnerability in the session_status t...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32978 - High
๐ CVE-2026-32978 - High (8)
OpenClaw before 2026.3.11 contains an approval integrity vulnerability where system.run approvals...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32975 - Critical
๐ด CVE-2026-32975 - Critical (9.8)
OpenClaw before 2026.3.12 contains a weak authorization vulnerability in Zalouser allowlist mode ...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32974 - High
๐ CVE-2026-32974 - High (8.6)
OpenClaw before 2026.3.12 contains an authentication bypass vulnerability in Feishu webhook mode ...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32973 - Critical
๐ด CVE-2026-32973 - Critical (9.8)
OpenClaw before 2026.3.11 contains an exec allowlist bypass vulnerability where matchesExecAllowl...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-33573 - High
๐ CVE-2026-33573 - High (8.8)
OpenClaw before 2026.3.11 contains an authorization bypass vulnerability in the gateway agent RPC...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-33572 - High
๐ CVE-2026-33572 - High (8.4)
OpenClaw before 2026.2.17 creates session transcript JSONL files with overly broad default permis...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32987 - Critical
๐ด CVE-2026-32987 - Critical (9.8)
OpenClaw before 2026.3.13 allows bootstrap setup codes to be replayed during device pairing verif...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32980 - High
๐ CVE-2026-32980 - High (7.5)
OpenClaw before 2026.3.13 reads and buffers Telegram webhook request bodies before validating the...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-33573 - High
๐ CVE-2026-33573 - High (8.8)
OpenClaw before 2026.3.11 contains an authorization bypass vulnerability in the gateway agent RPC...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-33572 - High
๐ CVE-2026-33572 - High (8.4)
OpenClaw before 2026.2.17 creates session transcript JSONL files with overly broad default permis...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32987 - Critical
๐ด CVE-2026-32987 - Critical (9.8)
OpenClaw before 2026.3.13 allows bootstrap setup codes to be replayed during device pairing verif...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
CVE-2026-32980 - High
๐ CVE-2026-32980 - High (7.5)
OpenClaw before 2026.3.13 reads and buffers Telegram webhook request bodies before validating the...
www.thehackerwire.com/vulnerability/CVE-2026-3...
#infosec #cybersecurity #CVE #vulnerability #security #patchstack
