CVE-2026-32978 in OpenClawinformación

Resumen (Inglés)

OpenClaw before 2026.3.11 contains an approval integrity vulnerability where system.run approvals fail to bind mutable file operands for certain script runners like tsx and jiti. Attackers can obtain approval for benign script commands, rewrite referenced scripts on disk, and execute modified code under the approved run context.

Responsable

VulnCheck

Reservar

2026-03-17

Divulgación

2026-03-29

Voces

Fecha de publicación	Base	Temp	Vulnerabilidad	CWE	Prod	Exp	Con	EPSS	CTI	CVE
2026-03-29	6.5	6.4	OpenClaw escalada de privilegios	863	Artificial Intelligence Software	No está definido	Arreglo oficial	0.00000	6.32-	CVE-2026-32978

Mostrar más

Descripción
Cambios
Inteligencia de amenazas
API/JSON

◂ AnteriorVisión De ConjuntoPróximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!