CVE-2026-59261
HIGH
NVD
CVSS Score
7.1
Severity
HIGH
Published
Jul 08, 2026
Vendor
unknown
Description
OpenClaw before 2026.5.28 contains a credential exposure vulnerability where workspace dotenv files can override provider credentials. Attackers with lower-trust access to configured input paths can expose sensitive data and credentials that should remain within trusted boundaries.