Tag archive

CVEs

2 articles connected to this topic.

OpenClaw • Apr 2, 2026

CertiK's OpenClaw Security Report: 280+ Advisories, 100+ CVEs, and Your Crypto Wallet at Risk

Web3 security firm CertiK published a systematic security analysis of OpenClaw, documenting 280+ GitHub advisories, 100+ CVEs, 135,000 exposed instances, and malicious skills targeting MetaMask, Phantom, and Trust Wallet credentials.

OpenClaw • Apr 2, 2026

OpenClaw's March CVE Tsunami: 15+ Vulnerabilities in 30 Days

A wave of critical privilege escalation and authorization bypass vulnerabilities hit OpenClaw in late March 2026 — including CVSS 9.9 and 9.8 flaws in the device pairing system. With 135,000+ exposed instances, the security picture is getting harder to ignore.