TROYANOSYVIRUS
Retour aux CVEs

CVE-2026-28449

MEDIUM
6.5

Description

OpenClaw versions prior to 2026.2.25 lack durable replay state for Nextcloud Talk webhook events, allowing valid signed webhook requests to be replayed without suppression. Attackers can capture and replay previously valid signed webhook requests to trigger duplicate inbound message processing and cause integrity or availability issues.

Details CVE

Score CVSS v3.16.5
SeveriteMEDIUM
Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
Vecteur d'attaqueNETWORK
ComplexiteLOW
Privileges requisNONE
Interaction utilisateurNONE
Publie3/19/2026
Derniere modification3/25/2026
Sourcenvd
Observations honeypot0

Produits affectes

openclaw:openclaw

Faiblesses (CWE)

CWE-294

References

https://github.com/openclaw/openclaw/commit/d512163d686ad6741783e7119ddb3437f493dbbc(disclosure@vulncheck.com)
https://github.com/openclaw/openclaw/security/advisories/GHSA-r9q5-c7qc-p26w(disclosure@vulncheck.com)
https://www.vulncheck.com/advisories/openclaw-webhook-replay-attack-via-missing-durable-replay-suppression(disclosure@vulncheck.com)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.