CVE-2026-32914 in OpenClawinformation

Résumé (Anglaise)

OpenClaw before 2026.3.12 contains an insufficient access control vulnerability in the /config and /debug command handlers that allows command-authorized non-owners to access owner-only surfaces. Attackers with command authorization can read or modify privileged configuration settings restricted to owners by exploiting missing owner-level permission checks.

Responsable

VulnCheck

Réserver

16/03/2026

Divulgation

29/03/2026

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
354116	OpenClaw élévation de privilèges	863	Non défini	Correctif officiel	CVE-2026-32914

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

◂ PrécédentAperçuSuivant ▸

Do you need the next level of professionalism?

Upgrade your account now!