CVE-2026-27002 | OpenClaw/Clawdbot/Moltbot up to 2026.2.14 Setting unnecessary privileges

Inserito da Angelo Barbosa | Feb 20, 2026 | CVE

A vulnerability described as critical has been identified in OpenClaw, Clawdbot and Moltbot up to 2026.2.14. Affected is an unknown function of the component Setting Handler. The manipulation results in execution with unnecessary privileges.

This vulnerability is identified as CVE-2026-27002. The attack can be executed remotely. There is not any exploit available.

Upgrading the affected component is recommended.

CVE-2026-27002 | OpenClaw/Clawdbot/Moltbot up to 2026.2.14 Setting unnecessary privileges

Post correlati

CVE-2025-10329 | cdevroe unmark up to 1.9.3 Marks.php url server-side request forgery

CVE-2025-6915 | PHPGurukul Student Record System 3.2 /register.php session sql injection

CVE-2024-41597 | ProcessWire 3.0.229 Comments cross-site request forgery

CVE-2024-9634 | GiveWP Plugin up to 3.16.3 on WordPress code injection