CVE-2026-43529 | OpenClaw up to 2026.4.9 validateScriptFileForShellBleed toctou

Inserito da Angelo Barbosa | Mag 5, 2026 | CVE

A vulnerability was found in OpenClaw up to 2026.4.9. It has been declared as problematic. Affected by this issue is the function validateScriptFileForShellBleed. The manipulation results in time-of-check time-of-use.

This vulnerability is cataloged as CVE-2026-43529. The attack must be initiated from a local position. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2026-43529 | OpenClaw up to 2026.4.9 validateScriptFileForShellBleed toctou

Post correlati

CVE-2024-0621 | Simple Share Buttons Adder Plugin up to 8.4.11 on WordPress CSS Setting cross site scripting

CVE-2024-13478 | enituretechnology LTL Freight Quotes Plugin up to 3.6.4 on WordPress dropship_edit_id/edit_id sql injection

CVE-2024-24579 | anchore stereoscope prior 0.0.1 UntarToDirectory path traversal (GHSA-hpxr-w9w7-g4gv)

CVE-2021-46935 | Linux Kernel up to 5.15.12 binder async_free_space allocation of resources