CVE-2026-41365 | OpenClaw up to 2026.3.30 Graph API confused deputy (GHSA-chfm-xgc4-47rj)

A vulnerability, which was classified as critical, has been found in OpenClaw up to 2026.3.30. Affected by this issue is some unknown functionality of the component Graph API. This manipulation causes unintended intermediary.

The identification of this vulnerability is CVE-2026-41365. It is possible to initiate the attack remotely. There is no exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More