Openclaw
AI Threat Alert tracks 233 known AI/ML vulnerabilities affecting Openclaw products — each enriched with CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis. Browse every Openclaw CVE below, sorted by severity and recency.
| Severity | CVE | Headline | Package | CVSS |
|---|---|---|---|---|
| CRITICAL | CVE-2026-53838 | OpenClaw: approval scope bypass via reconnection state | OpenClaw | 9.8 |
| MEDIUM | CVE-2026-22168 | OpenClaw: cmd.exe argument smuggling evades approval log | OpenClaw | 6.5 |
| MEDIUM | CVE-2026-22169 | OpenClaw: safeBins allowlist bypass enables command exec | OpenClaw | 6.7 |
| MEDIUM | CVE-2026-22174 | OpenClaw: local token leak via CDP probe hijack | OpenClaw | 6.8 |
| HIGH | CVE-2026-22175 | OpenClaw: allowlist bypass lets agents run any command | OpenClaw | 7.1 |
| MEDIUM | CVE-2026-22170 | OpenClaw: empty allowlist bypasses BlueBubbles DM auth | OpenClaw | 6.5 |
| MEDIUM | CVE-2026-22180 | OpenClaw: path traversal enables arbitrary file writes | OpenClaw | 5.3 |
| HIGH | CVE-2026-22179 | OpenClaw: allowlist bypass enables arbitrary OS command exec | OpenClaw | 7.2 |
| MEDIUM | CVE-2026-22176 | OpenClaw: cmd injection in Windows task script generation | OpenClaw | 6.1 |
| MEDIUM | CVE-2026-22178 | OpenClaw: ReDoS via Feishu mention metadata | OpenClaw | 6.5 |
| HIGH | CVE-2026-22171 | OpenClaw: path traversal allows arbitrary file write | OpenClaw | 8.2 |
| MEDIUM | CVE-2026-22217 | OpenClaw: $SHELL env hijack enables arbitrary code execution | OpenClaw | 6.1 |
| HIGH | CVE-2026-22181 | OpenClaw: SSRF guard bypass exposes internal services | OpenClaw | 7.6 |
| MEDIUM | CVE-2026-27183 | OpenClaw: shell allowlist bypass via dispatch wrapper depth | OpenClaw | 5.3 |
| MEDIUM | CVE-2026-27522 | OpenClaw: path traversal enables arbitrary file read via media actions | OpenClaw | 6.5 |
| HIGH | CVE-2026-27566 | OpenClaw: allowlist bypass enables arbitrary OS command exec | OpenClaw | 7.1 |
| MEDIUM | CVE-2026-27646 | OpenClaw: sandbox escape via /acp spawn command | OpenClaw | 6.1 |
| MEDIUM | CVE-2026-27524 | OpenClaw: prototype pollution bypasses command gate | OpenClaw | 4.3 |
| MEDIUM | CVE-2026-27545 | OpenClaw: symlink race bypasses agent run approval | OpenClaw | 6.1 |
| MEDIUM | CVE-2026-27523 | OpenClaw: sandbox path traversal bypasses bind isolation | OpenClaw | 6.1 |
Frequently asked questions
How many known vulnerabilities affect Openclaw?
233 AI/ML CVEs affecting Openclaw products are tracked, sourced from NVD and GitHub Advisory.
What Openclaw products are affected?
The CVEs below map to the Openclaw AI/ML packages and tools tracked by AI Threat Alert; open any CVE to see the affected components and versions.
Where does the Openclaw vulnerability data come from?
Data is sourced from NVD and GitHub Advisory, then enriched with CVSS severity, EPSS exploit probability, and patch status for each CVE.
How can I monitor Openclaw for new vulnerabilities?
AI Threat Alert tracks Openclaw continuously; a Pro subscription adds breaking alerts when new CVEs affecting Openclaw are published.
How do I assess Openclaw's security exposure?
Each CVE below carries CVSS severity and exploitation signals, so you can review the highest-severity Openclaw issues first and judge the exposure for your stack.