CVE-2026-43578 - OpenClaw 2026.3.31 < 2026.4.10 - Privilege Escalation via Missed Async Exec Completion Events in Heartbeat Owner Downgrade
CVE ID :CVE-2026-43578 Published : May 6, 2026, 8:16 p.m. | 38 minutes ago Description :OpenClaw versions 2026.3.31 before 2026.4.10 contain a privilege escalation vulnerability where heartbeat owner downgrade detection misses local background async exec completion events. Attackers can exploi
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] North Korean hackers targeted ethnic Koreans in China with Android ‘BirdCall’ malware
- [CYBER] Quacc++: Automated Open Source Vulnerability Discovery
- [CYBER] The "Logic Span": Using OpenTelemetry to Trace Hallucinations
- [CYBER] Hackers abuse Google ads for GoDaddy ManageWP login phishing
- [CYBER] DOJ says ransomware gang tapped into Russian government databases
- [CYBER] DAEMON Tools devs confirm breach, release malware-free version