cvedb.io
CVE-2026-62192
HIGH · CVSS 8.1
EPSS exploitation probability: 0%
Published 2026-07-13T22:16:50.457 · Last modified 2026-07-13T22:16:50.457

Summary

OpenClaw versions 2026.6.6 before 2026.6.9 contain an authorization bypass vulnerability in Discord guild actions that allows lower-trust callers to perform actions requiring stronger authorization checks. Attackers can exploit misconfigured input paths to skip cross-provider requester authorization and execute restricted operations.

Does this affect you?

Add your gear to cvedb and we'll alert you only when a vendor you run ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.