CVE-2026-43534 - OpenClaw < 2026.4.10 - Unsanitized External Input in Agent Hook Events
CVE ID :CVE-2026-43534 Published : May 5, 2026, 11:25 a.m. | 47 minutes ago Description :OpenClaw before 2026.4.10 contains an input validation vulnerability that allows external hook metadata to be enqueued as trusted system events. Attackers can supply malicious hook names to escalate untrus
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Hackers steal students’ data during breach at education tech giant Instructure
- [CYBER] CloudZ malware abuses Microsoft Phone Link to steal SMS and OTPs
- [CYBER] Stop triaging Go CVEs that don't affect you
- [CYBER] Gaza: Israeli strikes kill 2 Palestinians in latest truce breach
- [CYBER] Hackers Abuse DAEMON Tools Distribution Channel to Deliver Malicious Payloads
- [CYBER] The EOL Blind Spot in Your CVE Feed: What SCA Tools Don't Check.