CVE-2026-62213
MEDIUM
NVD
CVSS Score
6.5
Severity
MEDIUM
Published
Jul 17, 2026
Vendor
unknown
Description
OpenClaw versions before 2026.5.27 contain a token leakage vulnerability in MS Teams outbound requests that allows lower-trust callers to expose Bot Framework tokens. Attackers can access configured input paths to retrieve credentials that should remain within the trusted boundary.