CVE-2026-32048 | OpenClaw up to 2026.3.0 sessions_spawn permission assignment (GHSA-p7gr-f84w-hqg5)

Inserito da Angelo Barbosa | Mar 21, 2026 | CVE

A vulnerability has been found in OpenClaw up to 2026.3.0 and classified as problematic. Impacted is the function sessions_spawn. This manipulation causes incorrect permission assignment.

The identification of this vulnerability is CVE-2026-32048. It is possible to initiate the attack remotely. There is no exploit available.

The affected component should be upgraded.

CVE-2026-32048 | OpenClaw up to 2026.3.0 sessions_spawn permission assignment (GHSA-p7gr-f84w-hqg5)

Post correlati

CVE-2025-20635 | MediaTek MT8390 V6 DA out-of-bounds write (MSV-2434 / ALPS09403752)

CVE-2025-9406 | xuhuisheng lemon up to 1.13.0 CmsArticleController.java uploadImage Upload unrestricted upload (Issue 212)

CVE-2024-4020 | Tenda FH1206 1.2.0.8(8155) /goform/addressNat fromAddressNat entrys buffer overflow

CVE-2024-10913 | Clone Plugin up to 2.4.6 on WordPress recursive_unserialized_replace code injection