CVE Vulnerability Catalog

Translated CVE descriptions from NVD NIST — in English

CISA KEV catalog updated: (v2026.07.07)

CVE-2026-0136
Medium

In Modem, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed.

CVE-2026-0128
Medium

In the RtcpFbPacket::decodeRtcpFbPacket function, there is a possible out-of-bounds read due to an integer overflow. This could lead to remote information disclosure without the need for additional execution privileges. User interaction is required for exploitation.

CVE-2026-0127
Medium

In the NrmmMsgCodec::DecodeUPUTransparentContext function of cn_NrmmDecoder.cpp, there is a possible out-of-bounds read due to memory corruption. This could lead to remote denial of service causing a communication processor crash with no additional execution privileges needed.

CVE-2026-53862
Medium

OpenClaw before version 2026.5.12 contains a bootstrap token replay vulnerability allowing callers with pending token access to reuse tokens with broader requested scopes. Attackers can replay bootstrap tokens before approval to escalate pairing authority beyond intended scope limits.

CVE-2026-53861
Medium

OpenClaw before version 2026.5.6 contains an allowlist bypass vulnerability in the macOS Swift exec feature that misses combined POSIX inline-command flags. Attackers can execute shell content outside the intended allowlist check, potentially allowing unauthorized command execution depending on operator configuration.

CVE-2026-53860
Medium

OpenClaw before version 2026.5.7 contains a sender policy bypass vulnerability in BlueBubbles that allows participants to match allowlist entries through conversation metadata rather than stable sender identity.

CVE-2026-53859
Medium

OpenClaw before version 2026.5.26 contains a hostname validation vulnerability allowing attackers to bypass blocklist comparisons using trailing-dot notation in model or workspace-derived URLs.

CVE-2026-53856
Medium

OpenClaw 2026.4.23 before 2026.4.24 contains an insecure file permissions vulnerability in config recovery that restores OpenClaw.json with overly broad permissions.

CVE-2026-53854
Medium

OpenClaw before version 2026.4.25 contains a privilege escalation vulnerability in internal and webchat command authentication that allows senders to inherit wildcard ownerAllowFrom state across channel boundaries.

CVE-2026-53852
Medium

OpenClaw before version 2026.4.25 contains a scope containment bypass vulnerability in device re-pairing that allows authenticated operators to restore broader scopes than intended by submitting empty-scope re-pairing requests.

CVE-2026-53851
Medium

OpenClaw before version 2026.5.12 contains a notification bypass vulnerability allowing Slack reaction events to enter the agent pipeline despite disabled reaction notifications.

CVE-2026-53850
Medium

OpenClaw before version 2026.4.25 contains a control scope enforcement bypass vulnerability in the focus command that allows authenticated callers to execute the command without proper authorization checks.

CVE-2026-53848
Medium

OpenClaw before version 2026.5.26 contains an exec allowlist bypass vulnerability allowing authenticated operators to execute wrapper-level side effects outside allowlisted command intent. Attackers can craft command requests that bypass allowlist validation.

CVE-2026-53847
Medium

OpenClaw before 2026.5.6 contains a privilege escalation vulnerability in the Active Memory write scope that allows Gateway operators with operator.write access to modify global configuration without requiring operator.admin privileges.

CVE-2026-53845
Medium

OpenClaw before version 2026.5.6 contains a hook bypass vulnerability where skill commands routed through the affected dispatch path skip before-tool-call hook coverage. Attackers can exploit this by sending skill commands through the vulnerable dispatch path to bypass hook-based auditing and policy enforcement mechanisms.

CVE-2026-53844
Medium

OpenClaw before 2026.4.29 contains a session visibility check bypass vulnerability in shared memory search. This allows authenticated callers to access memory entries without proper authorization.

CVE-2026-53841
Medium

OpenClaw before version 2026.5.12 contains a cross-site scripting vulnerability in exported session HTML that preserves unsafe javascript: and data: links in generated content.

CVE-2026-4367
Medium

A flaw was found in libXpm. A local user with low privileges could exploit an Out-of-Bounds Read vulnerability in the `xpmNextWord()` function by processing a specially crafted or very small XPM (X PixMap) image file. This improper validation of file boundaries can cause an internal pointer to read beyond the file's end, leading to application crashes and Denial of Service conditions.

CVE-2026-48775
Medium

A vulnerability in LangGraph SQLite Checkpoint allows remote code execution through deserialization of untrusted JSON data. JsonPlusSerializer can reconstruct arbitrary Python objects from checkpoint payloads, enabling an attacker with write access to the checkpoint store to execute code during checkpoint loading.

CVE-2026-47963
Medium

The vulnerability in DNG SDK versions 1.7.1 2536 and earlier is caused by an out-of-bounds read, potentially leading to disclosure of sensitive memory. An attacker could exploit this to obtain confidential information, but user interaction is required as the victim must open a malicious file.

PreviousPage 96 of 514Next

Vulnerability data from NVD (NIST) · CISA KEV · EPSS