CVE-2026-34512 | OpenClaw up to 2026.3.24 kill killSubagentRunAdmin authorization (GHSA-9p93-7j67-5pc2)

Inserito da Angelo Barbosa | Apr 10, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in OpenClaw up to 2026.3.24. Affected by this vulnerability is the function killSubagentRunAdmin of the file /sessions/:sessionKey/kill. Performing a manipulation results in incorrect authorization.

This vulnerability was named CVE-2026-34512. The attack may be initiated remotely. There is no available exploit.

It is advisable to upgrade the affected component.

CVE-2026-34512 | OpenClaw up to 2026.3.24 kill killSubagentRunAdmin authorization (GHSA-9p93-7j67-5pc2)

Post correlati

CVE-2024-2375 | WPQA Builder Plugin up to 6.1.0 on WordPress Slider Setting cross site scripting

CVE-2024-53311 | Immunity Debugger 1.85 Input stack-based overflow

CVE-2023-52226 | Advanced Flamingo Plugin up to 1.0 on WordPress cross-site request forgery

CVE-2025-7556 | code-projects Voting System 1.0 /admin/voters_edit.php ID sql injection