CVE Vulnerabilities - 3 March 2026

Weintek easyweb v2.1.53 contains hardcoded encryption key

CVE-2024-55023

Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain a hardcoded encryption key which could allow attackers to access sensitive...

5.3

OpenClaw could let unauthorized users send messages to groups

GHSA-jv6r-27ww-4gw4

## Summary DM pairing-store identities were incorrectly eligible for group allowlist authorization checks, enabling cross-context authorization in gro...

5.3

OpenClaw Allows Attackers to Inject Malicious Code in Images

GHSA-2ww6-868g-2c56

## Summary The HTML session exporter (`src/auto-reply/reply/export-html/template.js`) interpolates `img.mimeType` directly into `<img src="data:...">...

5.3

OpenClaw has allowlist exec-guard bypass via env -S

GHSA-48wf-g7cp-gr3m

### Summary In `allowlist` mode, `system.run` guardrails could be bypassed through `env -S`, causing policy-analysis/runtime-execution mismatch for sh...

5.3

Apache Ranger: Hackers Can Fake Certificate, Steal Data

CVE-2025-59060 GHSA-5fvg-qwcp-r325

Hostname verification bypass issue in Apache Ranger NiFiRegistryClient/NiFiClient is reported in Apache Ranger versions <= 2.7.0. Users are recommend...

5.3

WordPress AI ChatBot plugin exposes ChatGPT API key to hackers

CVE-2026-1336

The AI ChatBot with ChatGPT and Content Generator by AYS plugin for WordPress is vulnerable to unauthorized access and modification of data due to mis...

5.3

OpenClaw on Windows can run malicious commands

GHSA-fg3m-vhrr-8gj6

### Summary On Windows, the Lobster extension previously retried certain spawn failures (`ENOENT`/`EINVAL`) with `shell: true` for wrapper compatibili...

5.1

OpenClaw Chrome Extension Relay Authentication Failure on Local Connections

GHSA-pfv7-rr5m-qmv6

### Summary When the optional Chrome extension relay is enabled, `/extension` accepted unauthenticated WebSocket upgrades while `/json/*` and `/cdp` ...

5.1

OpenClaw Slack May Let Unapproved Senders Pin or React

GHSA-rm2p-j3r7-4x4j

### Summary OpenClaw Slack monitor handled `reaction_*` and `pin_*` non-message events before applying sender-policy checks consistently. In affected...

5.1

OpenClaw safeBins grep -e File Read Bypass (stdin-only policy bypass)

GHSA-3xfw-4pmr-4xc5

### Summary OpenClaw `tools.exec.safeBins` had a stdin-only policy bypass for `grep`. If pattern input was supplied through `-e` / `--regexp`, the va...

5.1

OpenClaw for macOS allows unauthorized execution of local files

GHSA-7f4q-9rqh-x36p

### Summary On macOS node-host, optional exec-approval allowlist mode previously treated basename-only entries (for example `echo`) as trusted command...

5.1

OpenClaw macOS Beta Onboarding Exposes Sensitive Data

GHSA-6g25-pc82-vfwp

### Summary The affected surface is the OpenClaw macOS app onboarding flow, and the macOS app is currently in **beta**. In that beta onboarding flow,...

5.1

IBM MQ: Unauthorized Access to Sensitive Data

CVE-2026-1713

IBM MQ 9.1.0.0 through 9.1.0.33 LTS, 9.2.0.0 through 9.2.0.40 LTS, 9.3.0.0 through 9.3.0.36 LTS, 9.30.0 through 9.3.5.1 CD, 9.4.0.0 through 9.4.0.17 L...

5.0

WatchGuard Fireware OS: Malicious Firmware Update Bypasses Security Check

CVE-2026-3344

A vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS filesystem integrity check and maintain limited persistence ...

6.9

OpenClaw Gateway Tool Access Too Broad in Some Cases

GHSA-2hm8-rqrm-xfjq

## Summary In authenticated non-owner DM sessions, a narrow tool-invocation path could reach broader-than-intended owner-only gateway actions. ## Im...

4.8

OpenClaw's shell fallback can execute malicious code

GHSA-f8mp-vj46-cq8v

The shell environment fallback path could invoke an attacker-controlled shell when `SHELL` was inherited from an untrusted host environment. In affect...

4.5

OpenClaw versions prior to 2026.2.17 allow attackers to read sensitive files.

GHSA-56pc-6hvp-4gv4

OpenClaw versions prior to 2026.2.17 contain a path traversal vulnerability in the $include directive resolution that allows reading arbitrary local f...

6.7

HomeBox Sends Data to Unverified Websites

CVE-2026-27600

HomeBox is a home inventory and organization system. Prior to 0.24.0-rc.1, the notifier functionality allows authenticated users to specify arbitrary ...

4.3

Craft CMS allows users to duplicate and access restricted content

CVE-2026-28782 GHSA-jxm3-pmm2-9gf6

## Description The "Duplicate" entry action does not properly verify if the user has permission to perform this action on the specific target elements...

5.7

Canonical LXD on Linux: Authenticated Users Can Access All Trusted Certificates

CVE-2026-3351 GHSA-crmg-9m86-636r

Improper authorization in the API endpoint GET /1.0/certificates in Canonical LXD 6.6 on Linux allows an authenticated, restricted user to enumerate a...

2.1

Nokia IMPACT allows authenticated users to upload and execute JavaScript

CVE-2021-35483

The Applications component of Nokia IMPACT version through 19.11.2.10-20210118042150283 allows an authenticated user to arbitrarily upload JavaScript ...

4.1

OpenClaw's voice-call webhook can accept fake requests

GHSA-gcj7-r3hg-m7w6

### Summary The voice-call Twilio webhook path accepted replay/dedupe identity from unsigned request metadata (`i-twilio-idempotency-token`), enabling...

3.7

AWS KMS TLS Auth library may cause system crashes

GHSA-5whh-4q9j-7v28

### Summary aws-kms-tls-auth is an optional utility for s2n-tls that enables customers to use AWS KMS keys as part of the PSK extension field in a TLS...

3.7

Django File System Permissions Can Be Incorrectly Set

CVE-2026-25674 GHSA-mjgh-79qc-68w3 BIT-django-2026-25674

An issue was discovered in 6.0 before 6.0.3, 5.2 before 5.2.12, and 4.2 before 4.2.29. Race condition in file-system storage and file-based cache bac...

3.7

IBM DevOps Plan Local Cache Data Exposure

CVE-2025-36364

IBM DevOps Plan 3.0.0 through 3.0.5 allows web page cache to be stored locally which can be read by another user on the system....

3.3