CVE-2026-42438 - OpenClaw 2026.4.9 < 2026.4.10 - Sender Policy Bypass in Host Media Attachment Reads
CVE ID :CVE-2026-42438 Published : May 5, 2026, 11:24 a.m. | 47 minutes ago Description :OpenClaw versions 2026.4.9 before 2026.4.10 contain a sender policy bypass vulnerability in the outbound host-media attachment read helper that allows unauthorized local file disclosure. Attackers with den
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Hackers steal students’ data during breach at education tech giant Instructure
- [CYBER] CloudZ malware abuses Microsoft Phone Link to steal SMS and OTPs
- [CYBER] Stop triaging Go CVEs that don't affect you
- [CYBER] Gaza: Israeli strikes kill 2 Palestinians in latest truce breach
- [CYBER] Hackers Abuse DAEMON Tools Distribution Channel to Deliver Malicious Payloads
- [CYBER] The EOL Blind Spot in Your CVE Feed: What SCA Tools Don't Check.