Total CVEs

144,714

Critical Severity

4,191

High Severity

15,264

Last 7 Days

1,963
Quick preset (or use dates below)
Clear Filters
📅 Showing Year: 2026 (January 1 - December 31, 2026) View All Years →
Showing 22,701 - 22,720 of 41,119 CVEs
CVE-2026-35629 HIGH - 7.4

OpenClaw before 2026.3.25 contains a server-side request forgery vulnerability in multiple channel extensions that fail to properly guard configured base URLs against SSRF attacks. Attackers can exploit unprotected fetch() calls against configured endpoints to rebind requests to blocked internal des...

Vendor: OpenClaw
Product: OpenClaw
Published: Apr 09, 2026
Source: NVD
CVE-2026-35628 MEDIUM - 4.8

OpenClaw before 2026.3.25 contains a missing rate limiting vulnerability in Telegram webhook authentication that allows attackers to brute-force weak webhook secrets. The vulnerability enables repeated authentication guesses without throttling, permitting attackers to systematically guess webhook se...

Vendor: OpenClaw
Product: OpenClaw
Published: Apr 09, 2026
Source: NVD
CVE-2026-35627 MEDIUM - 6.5

OpenClaw before 2026.3.22 performs cryptographic and dispatch operations on inbound Nostr direct messages before enforcing sender and pairing policy validation. Attackers can trigger unauthorized pre-authentication computation by sending crafted DM messages, enabling denial of service through resour...

Vendor: OpenClaw
Product: OpenClaw
Published: Apr 09, 2026
Source: NVD
CVE-2026-35626 MEDIUM - 5.3

OpenClaw before 2026.3.22 contains an unauthenticated resource exhaustion vulnerability in voice call webhook handling that buffers request bodies before provider signature checks. Attackers can send large or malicious webhook requests to exhaust server resources without authentication by bypassing ...

Vendor: OpenClaw
Product: OpenClaw
Published: Apr 09, 2026
Source: NVD
CVE-2026-35625 HIGH - 7.8

OpenClaw before 2026.3.25 contains a privilege escalation vulnerability where silent local shared-auth reconnects auto-approve scope-upgrade requests, widening paired device permissions from operator.read to operator.admin. Attackers can exploit this by triggering local reconnection to silently esca...

Vendor: OpenClaw
Product: OpenClaw
Published: Apr 09, 2026
Source: NVD
CVE-2026-35624 MEDIUM - 4.2

OpenClaw before 2026.3.22 contains a policy confusion vulnerability in room authorization that matches colliding room names instead of stable room tokens. Attackers can exploit similarly named rooms to bypass allowlist policies and gain unauthorized access to protected Nextcloud Talk rooms.

Vendor: OpenClaw
Product: OpenClaw
Published: Apr 09, 2026
Source: NVD
CVE-2026-35623 MEDIUM - 4.8

OpenClaw before 2026.3.25 contains a missing rate limiting vulnerability in webhook authentication that allows attackers to brute-force weak webhook passwords without throttling. Remote attackers can repeatedly submit incorrect password guesses to the webhook endpoint to compromise authentication an...

Vendor: OpenClaw
Product: OpenClaw
Published: Apr 09, 2026
Source: NVD
CVE-2026-35622 MEDIUM - 5.9

OpenClaw before 2026.3.22 contains an improper authentication verification vulnerability in Google Chat app-url webhook handling that accepts add-on principals outside intended deployment bindings. Attackers can bypass webhook authentication by providing non-deployment add-on principals to execute u...

Vendor: OpenClaw
Product: OpenClaw
Published: Apr 09, 2026
Source: NVD
CVE-2026-35618 MEDIUM - 6.5

OpenClaw before 2026.3.23 contains a replay identity vulnerability in Plivo V2 signature verification that allows attackers to bypass replay protection by modifying query parameters. The verification path derives replay keys from the full URL including query strings instead of the canonicalized base...

Vendor: OpenClaw
Product: OpenClaw
Published: Apr 09, 2026
Source: NVD
CVE-2026-35617 MEDIUM - 4.2

OpenClaw before 2026.3.25 contains an authorization bypass vulnerability in Google Chat group policy enforcement that relies on mutable space display names. Attackers can rebind group policies by changing or colliding space display names to gain unauthorized access to protected resources.

Vendor: OpenClaw
Product: OpenClaw
Published: Apr 09, 2026
Source: NVD
CVE-2026-34512 HIGH - 8.1

OpenClaw before 2026.3.25 contains an improper access control vulnerability in the HTTP /sessions/:sessionKey/kill route that allows any bearer-authenticated user to invoke admin-level session termination functions without proper scope validation. Attackers can exploit this by sending authenticated ...

Vendor: OpenClaw
Product: OpenClaw
Published: Apr 09, 2026
Source: NVD
CVE-2026-33797 HIGH - 7.4

An Improper Input Validation vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker, sending a specific genuine BGP packet in an already established BGP session to reset only that session causing a Denial of Service (DoS). An attacker repeatedly...

Vendor: Juniper Networks
Product: Junos OS, Junos OS Evolved
Published: Apr 09, 2026
Source: NVD
CVE-2026-33793 HIGH - 7.8

An Execution with Unnecessary Privileges vulnerability in the User Interface (UI) of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged attacker to gain root privileges, thus compromising the system. When a configuration that allows unsigned Python op scripts is present o...

Vendor: Juniper Networks
Product: Junos OS, Junos OS Evolved
Published: Apr 09, 2026
Source: NVD
CVE-2026-33791 MEDIUM - 6.7

An OS Command Injection vulnerability in the CLI processing of Juniper Networks Junos OS and Junos OS Evolved allows a local, high-privileged attacker executing specific, crafted CLI commands to inject arbitrary shell commands as root, leading to a complete compromise of the system. Certain 's...

Vendor: Juniper Networks
Product: Junos OS, Junos OS Evolved
Published: Apr 09, 2026
Source: NVD
CVE-2026-33790 HIGH - 7.5

An Improper Check for Unusual or Exceptional Conditions vulnerability in the flow daemon (flowd) of Juniper Networks Junos OS on SRX Series allows an attacker sending a specific, malformed ICMPv6 packet to cause the srxpfe process to crash and restart. Continued receipt and processing of these packe...

Vendor: Juniper Networks
Product: Junos OS
Published: Apr 09, 2026
Source: NVD
CVE-2026-33788 HIGH - 7.8

A Missing Authentication for Critical Function vulnerability in the Flexible PIC Concentrators (FPCs) of Juniper Networks Junos OS Evolved on PTX Series allows a local, authenticated attacker with low privileges to gain direct access to FPCs installed in the device. A local user with low privileges...

Vendor: Juniper Networks
Product: Junos OS Evolved
Published: Apr 09, 2026
Source: NVD
CVE-2026-33787 MEDIUM - 5.5

An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis control daemon (chassisd) of Juniper Networks Junos OS on SRX1500, SRX4100, SRX4200 and SRX4600 allows a local attacker with low privileges to cause a complete Denial of Service (DoS). When a specific 'show ch...

Vendor: Juniper Networks
Product: Junos OS
Published: Apr 09, 2026
Source: NVD
CVE-2026-33786 MEDIUM - 5.5

An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis control daemon (chassisd) of Juniper Networks Junos OS on SRX1600, SRX2300 and SRX4300 allows a local attacker with low privileges to cause a complete Denial of Service (DoS). When a specific 'show chassis...

Vendor: Juniper Networks
Product: Junos OS
Published: Apr 09, 2026
Source: NVD
CVE-2026-33785 HIGH - 8.8

A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on MX Series allows a local, authenticated user with low privileges to execute specific commands which will lead to a complete compromise of managed devices. Any user logged in, without requiring specific privileges, can ...

Vendor: Juniper Networks
Product: Junos OS
Published: Apr 09, 2026
Source: NVD
CVE-2026-33784 CRITICAL - 9.8

A Use of Default Password vulnerability in the Juniper Networks Support Insights (JSI) Virtual Lightweight Collector (vLWC) allows an unauthenticated, network-based attacker to take full control of the device. vLWC software images ship with an initial password for a high privileged account. A c...

Vendor: Juniper Networks
Product: JSI LWC
Published: Apr 09, 2026
Source: NVD