CVE-2026-41366 | OpenClaw up to 2026.3.30 appendLocalMediaParentRoots permission assignment (GHSA-57gh-m6rq-54cf)

Inserito da Angelo Barbosa | Apr 28, 2026 | CVE

A vulnerability was found in OpenClaw up to 2026.3.30. It has been classified as problematic. Impacted is the function appendLocalMediaParentRoots. The manipulation leads to incorrect permission assignment.

This vulnerability is listed as CVE-2026-41366. The attack must be carried out locally. There is no available exploit.

Upgrading the affected component is recommended.

CVE-2026-41366 | OpenClaw up to 2026.3.30 appendLocalMediaParentRoots permission assignment (GHSA-57gh-m6rq-54cf)

Post correlati

CVE-2025-25896 | D-Link DSL-3782 1.01 Packet destination/netmask/gateway denial of service

CVE-2024-0679 | ColorMag Plugin up to 3.1.2 on WordPress Plugin Installation authorization

CVE-2025-2085 | StarSea99 starsea-mall 1.0 /admin/carousels/save redirectUrl cross site scripting

CVE-2024-25596 | Doofinder for WooCommerce Plugin up to 2.1.8 on WordPress Setting cross site scripting