OpenClaw Vulnerabilities

pip AI Agents

AI Threat Alert tracks 427 known vulnerabilities in OpenClaw, 15 rated critical — an AI/ML ai agents in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
427
Total CVEs
15
Critical
pip
Ecosystem
Jul 8, 2026
Last CVE
41%
Patch Rate
3d
Avg Time to Patch

Known Vulnerabilities (427 total, page 4 of 18)

Severity CVE ID Summary CVSS Published
MEDIUM CVE-2026-35621 OpenClaw: privilege escalation via scope bypass in allowlist 6.5 Apr 10, 2026 MEDIUM CVE-2026-35618 OpenClaw: Plivo V2 replay bypass allows unauth actions 6.5 Apr 9, 2026 MEDIUM CVE-2026-35617 OpenClaw: auth bypass via group policy name collision 4.2 Apr 9, 2026 MEDIUM CVE-2026-35619 OpenClaw: auth bypass exposes AI gateway model metadata 4.3 Apr 10, 2026 MEDIUM CVE-2026-35620 OpenClaw: missing authz enables session policy hijack 5.4 Apr 10, 2026 MEDIUM CVE-2026-34505 OpenClaw: webhook rate-limit bypass enables brute-force 6.5 Mar 31, 2026 HIGH CVE-2026-34504 OpenClaw: SSRF in fal provider exposes internal services 8.3 Mar 31, 2026 HIGH CVE-2026-34503 OpenClaw: WebSocket session persists after token revocation 8.1 Mar 31, 2026 MEDIUM CVE-2026-33581 OpenClaw: sandbox bypass enables arbitrary file read 6.5 Mar 31, 2026 HIGH CVE-2026-34512 OpenClaw: improper authz allows admin session kill 8.1 Apr 9, 2026 MEDIUM CVE-2026-34506 OpenClaw: auth bypass lets any Teams user invoke AI agent 4.3 Mar 31, 2026 HIGH CVE-2026-33577 OpenClaw: scope bypass lets low-priv ops elevate node access 8.1 Mar 31, 2026 MEDIUM CVE-2026-33574 OpenClaw: TOCTOU path traversal enables arbitrary file write 6.2 Mar 29, 2026 MEDIUM CVE-2026-33578 OpenClaw: allowlist bypass exposes AI agents to all users 4.3 Mar 31, 2026 MEDIUM CVE-2026-33580 OpenClaw: webhook brute-force enables event forgery 6.5 Mar 31, 2026 HIGH CVE-2026-33575 OpenClaw: gateway credential exposed in pairing setup codes 7.5 Mar 29, 2026 HIGH CVE-2026-33573 OpenClaw: workspace boundary bypass, arbitrary exec 8.8 Mar 29, 2026 MEDIUM CVE-2026-33576 OpenClaw: pre-auth media fetch enables disk exhaustion DoS 6.5 Mar 31, 2026 CRITICAL CVE-2026-33579 OpenClaw: scope bypass escalates low-priv to admin 9.9 Mar 31, 2026 MEDIUM CVE-2026-32977 OpenClaw: TOCTOU race condition enables sandbox file escape 6.3 Mar 31, 2026 HIGH CVE-2026-32988 OpenClaw: sandbox escape via fs-bridge TOCTOU race 7.5 Mar 31, 2026 HIGH CVE-2026-32980 OpenClaw: unauthenticated webhook DoS via body buffering 7.5 Mar 29, 2026 HIGH CVE-2026-32982 OpenClaw: Telegram bot token leaked in media fetch errors 7.5 Mar 31, 2026 HIGH CVE-2026-32978 OpenClaw: script approval bypass allows RCE 8.0 Mar 29, 2026 CRITICAL CVE-2026-32987 OpenClaw: bootstrap code replay escalates to operator.admin 9.8 Mar 29, 2026

Showing 76–100 of 427

Frequently asked questions

What is OpenClaw?

OpenClaw is an AI/ML ai agents tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does OpenClaw have?

OpenClaw has 427 known CVEs, 15 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is OpenClaw distributed in?

OpenClaw is distributed via the pip ecosystem and categorized as ai agents.

Where does the OpenClaw vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of OpenClaw?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor OpenClaw in your stack

Get instant alerts when new vulnerabilities affect OpenClaw. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring