CVE-2026-32918 | OpenClaw up to 2026.3.10 session_status sessionKey authorization (GHSA-wcxr-59v9-rxr8)

Inserito da Angelo Barbosa | Mar 29, 2026 | CVE

A vulnerability has been found in OpenClaw up to 2026.3.10 and classified as problematic. The impacted element is an unknown function of the component session_status. The manipulation of the argument sessionKey leads to incorrect authorization.

This vulnerability is traded as CVE-2026-32918. An attack has to be approached locally. There is no exploit available.

The affected component should be upgraded.

CVE-2026-32918 | OpenClaw up to 2026.3.10 session_status sessionKey authorization (GHSA-wcxr-59v9-rxr8)

Post correlati

CVE-2024-24784 | net-mail up to 1.21.7/1.22.0 on Go Display Name ParseAddressList neutralization

CVE-2023-6546 | Linux Kernel up to 6.5-rc6 GSM 0710 TTY Multiplexor drivers/tty/n_gsm.c gsm_error use after free

CVE-2026-1045 | Viet Contact Plugin up to 1.3.2 on WordPress Setting ll1/ll2/ll3/ll4 cross site scripting

CVE-2025-68852 | Court Reservation Plugin up to 1.10.8 on WordPress cross site scripting