Stats Digest Feeds
โ† Back to all CVEs

CVE-2026-62221

MEDIUM NVD
CVSS Score 5.4
Severity MEDIUM
Published Jul 17, 2026
Vendor unknown

Description

OpenClaw 2026.5.12 before 2026.5.26 contain an incorrect authorization vulnerability in the ClickClack allowFrom feature. When the affected feature is enabled and reachable, a lower-trust caller or configured input path could execute or persist actions beyond the caller's intended authorization, including running non-allowlisted commands.

References