CVE-2026-59261 - CERT CVE
ID CVE-2026-59261
Sažetak OpenClaw before 2026.5.28 contains a credential exposure vulnerability where workspace dotenv files can override provider credentials. Attackers with lower-trust access to configured input paths can expose sensitive data and credentials that should remain within trusted boundaries.
Reference
CVSS
Base: 7.1
Impact: 5.2
Exploitability:1.8
Pristup
VektorSloženostAutentikacija
LOCAL LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
HIGH HIGH NONE
CVSS vektor CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
Zadnje važnije ažuriranje 08-07-2026 - 18:16
Objavljeno 08-07-2026 - 17:17