CVE-2026-41360 | OpenClaw up to 2026.4.1 pnpm dlx toctou (GHSA-w6wx-jq6j-6mcj)

A vulnerability was found in OpenClaw up to 2026.4.1. It has been rated as problematic. This affects an unknown part of the component pnpm dlx. This manipulation causes time-of-check time-of-use.

This vulnerability is tracked as CVE-2026-41360. The attack is restricted to local execution. No exploit exists.

Upgrading the affected component is advised.VulDB Recent EntriesRead More