Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

38 New today

62,269 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

295

Jun 2

151

Jun 3

354

Jun 4

517

Jun 5

109

Jun 6

Jun 7

255

Jun 8

658

Jun 9

351

Jun 10

245

Jun 11

336

Jun 12

Jun 13

Jun 14

Jun 15

Critical

High

Medium

Low

Latest

CVE CVSS 6.3

OpenClaw < 2026.5.6 - Missing Channel Type Validation in Mattermost Event Handlers_CVE-2026-53837

OpenClaw before 2026.5.6 contains an improper access control vulnerability in Mattermost event handlers that fails to validate channel type metadata. Attackers can bypass intended DM policy decisions by sending crafted Mattermost events missing channel type information to proc...

CVE-2026-53837 OpenClaw OpenClaw

Jun 12, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.7	CVE-2026-53836	OpenClaw < 2026.5.12 - Allowlist Bypass via PowerShell Encoded-Command Aliases_CVE-2026-53836 OpenClaw before 2026.5.12 contains an allowlist bypass vulnerability in PowerShell encoded-command handling that allows attackers to execute encode...	OpenClaw	OpenClaw	Jun 12, 2026	CVE
LOW 2.3	CVE-2026-53835	OpenClaw < 2026.5.6 - Config-Write Enforcement Bypass in Feishu Dynamic-Agent Bindings_CVE-2026-53835 OpenClaw before 2026.5.6 contains a configuration enforcement bypass vulnerability in Feishu dynamic-agent bindings that allows authenticated sende...	OpenClaw	OpenClaw	Jun 12, 2026	CVE
HIGH 8.2	CVE-2026-53834	OpenClaw < 2026.4.27 - Authorization Bypass in QQBot Pre-dispatch Slash Commands_CVE-2026-53834 OpenClaw before 2026.4.27 contains an authorization bypass vulnerability in QQBot pre-dispatch slash commands that allows authenticated senders to ...	OpenClaw	OpenClaw	Jun 12, 2026	CVE
HIGH 7.4	CVE-2026-53833	OpenClaw < 2026.4.29 - Authorization Bypass via QQBot Streaming Command_CVE-2026-53833 OpenClaw before 2026.4.29 contains an authorization bypass vulnerability in the QQBot streaming command that allows authenticated senders to mutate...	QQBot	QQBot	Jun 12, 2026	CVE
HIGH 7.4	CVE-2026-53832	OpenClaw < 2026.5.18 - Identity Header Forgery via Trusted-Proxy Configuration_CVE-2026-53832 OpenClaw before 2026.5.18 contains an identity header validation vulnerability allowing local same-host callers to forge trusted-proxy identity hea...	OpenClaw	OpenClaw	Jun 12, 2026	CVE
HIGH 7.6	CVE-2026-53831	OpenClaw < 2026.5.18 - Arbitrary File Read via Shell Expansion in system.run Safe-bin Allowlist_CVE-2026-53831 OpenClaw before 2026.5.18 contains a policy enforcement vulnerability in system.run safe-bin allowlist validation that allows shell expansion to mo...	OpenClaw	OpenClaw	Jun 12, 2026	CVE
MEDIUM 6	CVE-2026-53830	OpenClaw < 2026.4.22 - Webhook Secret Revocation Bypass via secrets.reload_CVE-2026-53830 OpenClaw before 2026.4.22 contains a webhook secret revocation bypass vulnerability allowing callers with old Slack and Zalo webhook secrets to rem...	OpenClaw	OpenClaw	Jun 12, 2026	CVE
HIGH 8.5	CVE-2026-53829	OpenClaw < 2026.5.18 - Command Truncation in Exec Approval Display_CVE-2026-53829 OpenClaw before 2026.5.18 contains an approval display truncation vulnerability allowing authenticated users to hide command suffixes from approver...	OpenClaw	OpenClaw	Jun 12, 2026	CVE
HIGH 7.7	CVE-2026-53828	OpenClaw < 2026.5.6 - Native Command Authorization Bypass via Owner-Command Enforcement_CVE-2026-53828 OpenClaw before 2026.5.6 contains an authorization bypass vulnerability in native command handling that allows authenticated senders to execute own...	OpenClaw	OpenClaw	Jun 12, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

OpenClaw < 2026.5.6 - Missing Channel Type Validation in Mattermost Event Handlers_CVE-2026-53837

Recent Advisories

OpenClaw < 2026.5.12 - Allowlist Bypass via PowerShell Encoded-Command Aliases_CVE-2026-53836

OpenClaw < 2026.5.6 - Config-Write Enforcement Bypass in Feishu Dynamic-Agent Bindings_CVE-2026-53835

OpenClaw < 2026.4.27 - Authorization Bypass in QQBot Pre-dispatch Slash Commands_CVE-2026-53834

OpenClaw < 2026.4.29 - Authorization Bypass via QQBot Streaming Command_CVE-2026-53833

OpenClaw < 2026.5.18 - Identity Header Forgery via Trusted-Proxy Configuration_CVE-2026-53832

OpenClaw < 2026.5.18 - Arbitrary File Read via Shell Expansion in system.run Safe-bin Allowlist_CVE-2026-53831

OpenClaw < 2026.4.22 - Webhook Secret Revocation Bypass via secrets.reload_CVE-2026-53830

OpenClaw < 2026.5.18 - Command Truncation in Exec Approval Display_CVE-2026-53829

OpenClaw < 2026.5.6 - Native Command Authorization Bypass via Owner-Command Enforcement_CVE-2026-53828

Protect Your Attack Surface with RedGem

Security Intelligence
Feed