Openclaw
AI Threat Alert tracks 233 known AI/ML vulnerabilities affecting Openclaw products — each enriched with CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis. Browse every Openclaw CVE below, sorted by severity and recency.
| Severity | CVE | Headline | Package | CVSS |
|---|---|---|---|---|
| MEDIUM | CVE-2026-27670 | OpenClaw: TOCTOU race enables arbitrary file write in agents | OpenClaw | 5.3 |
| HIGH | CVE-2026-28460 | OpenClaw: allowlist bypass enables OS command execution | OpenClaw | 7.1 |
| MEDIUM | CVE-2026-28449 | OpenClaw: webhook replay triggers duplicate agent actions | OpenClaw | 6.5 |
| HIGH | CVE-2026-28461 | OpenClaw: webhook DoS via memory exhaustion | OpenClaw | 7.5 |
| HIGH | CVE-2026-31989 | OpenClaw: SSRF in citation redirect exposes internal network | OpenClaw | 7.4 |
| MEDIUM | CVE-2026-31990 | OpenClaw: symlink traversal enables arbitrary file write | OpenClaw | 6.1 |
| MEDIUM | CVE-2026-29607 | OpenClaw: auth bypass enables unapproved RCE via wrapper | OpenClaw | 6.8 |
| MEDIUM | CVE-2026-29608 | OpenClaw: argv rewrite bypasses approval, enables RCE | OpenClaw | 6.7 |
| LOW | CVE-2026-31991 | OpenClaw: auth bypass via DM pairing grants group access | OpenClaw | 3.7 |
| HIGH | CVE-2026-31992 | OpenClaw: guardrail allowlist bypass enables arbitrary command execution | OpenClaw | 7.1 |
| MEDIUM | CVE-2026-31995 | OpenClaw: cmd injection via Windows shell fallback | OpenClaw | 5.3 |
| HIGH | CVE-2026-32000 | OpenClaw: cmd injection via Windows shell fallback | OpenClaw | 7.1 |
| MEDIUM | CVE-2026-31993 | OpenClaw: exec approval bypass allows RCE on macOS | OpenClaw | 4.8 |
| MEDIUM | CVE-2026-31997 | OpenClaw: post-approval PATH rebind enables arbitrary RCE | OpenClaw | 6.0 |
| HIGH | CVE-2026-31998 | OpenClaw: auth bypass enables unauthorized agent dispatch | OpenClaw | 8.6 |
| MEDIUM | CVE-2026-31999 | OpenClaw: CWD injection enables integrity loss on Windows | OpenClaw | 6.3 |
| HIGH | CVE-2026-31994 | OpenClaw: cmd injection via scheduled task generation | OpenClaw | 7.1 |
| MEDIUM | CVE-2026-31996 | OpenClaw: safeBins bypass allows file read/write | OpenClaw | 4.4 |
| MEDIUM | CVE-2026-32004 | OpenClaw: auth bypass exposes protected channel API | OpenClaw | 6.5 |
| MEDIUM | CVE-2026-32008 | OpenClaw: file:// bypass enables local file exfiltration | OpenClaw | 6.5 |
Frequently asked questions
How many known vulnerabilities affect Openclaw?
233 AI/ML CVEs affecting Openclaw products are tracked, sourced from NVD and GitHub Advisory.
What Openclaw products are affected?
The CVEs below map to the Openclaw AI/ML packages and tools tracked by AI Threat Alert; open any CVE to see the affected components and versions.
Where does the Openclaw vulnerability data come from?
Data is sourced from NVD and GitHub Advisory, then enriched with CVSS severity, EPSS exploit probability, and patch status for each CVE.
How can I monitor Openclaw for new vulnerabilities?
AI Threat Alert tracks Openclaw continuously; a Pro subscription adds breaking alerts when new CVEs affecting Openclaw are published.
How do I assess Openclaw's security exposure?
Each CVE below carries CVSS severity and exploitation signals, so you can review the highest-severity Openclaw issues first and judge the exposure for your stack.