CVE-2026-31997 | OpenClaw up to 2026.3.0 toctou (GHSA-q399-23r3-hfx4)

Inserito da Angelo Barbosa | Mar 19, 2026 | CVE

A vulnerability described as problematic has been identified in OpenClaw up to 2026.3.0. This affects an unknown part. Such manipulation leads to time-of-check time-of-use.

This vulnerability is referenced as CVE-2026-31997. The attack can only be performed from a local environment. No exploit is available.

Upgrading the affected component is recommended.

CVE-2026-31997 | OpenClaw up to 2026.3.0 toctou (GHSA-q399-23r3-hfx4)

Post correlati

CVE-2024-56019 | Gavin Rehkemper Inline Footnotes Plugin up to 2.3.0 on WordPress cross site scripting

CVE-2026-3025 | ShuoRen Smart Heating Integrated Management Platform 1.0.0 ExampleNodeService.asmx File unrestricted upload

CVE-2025-11490 | wonderwhy-er DesktopCommanderMCP up to 0.2.13 Absolute Path src/command-manager.ts extractBaseCommand os command injection (Issue 218)

CVE-2025-40540 | SolarWinds Serv-U type conversion