CVE-2026-32970 | OpenClaw up to 2026.3.10 gateway.auth.token/gateway.auth.password failing open (GHSA-qvr7-g57c-mrc7)

A vulnerability was found in OpenClaw up to 2026.3.10. It has been rated as problematic. The impacted element is an unknown function. This manipulation of the argument gateway.auth.token/gateway.auth.password causes not failing securely.

This vulnerability is handled as CVE-2026-32970. It is possible to launch the attack on the local host. There is not any exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More