CVE-2026-53844

MEDIUM NVD

CVSS Score 6.5

Severity MEDIUM

Published Jun 16, 2026

Vendor unknown

Description

OpenClaw before 2026.4.29 contains a session visibility check bypass vulnerability in shared memory search that allows authenticated callers to access memory entries without proper authorization. Attackers can skip session visibility guards on the search path to retrieve memory entries that should not be visible to their session.

References

https://github.com/openclaw/openclaw/security/advisories/GHSA-72fw-cqh5-f324
https://www.vulncheck.com/advisories/openclaw-session-visibility-check-bypass-in-shared-memory-search