CVE-2026-35657 Blast Radius

MEDIUM • CVSS 6.5OpenClaw before 2026.3.25 contains an authorization bypass vulnerability in the HTTP /sessions/:sessionKey/history route that skips operator.read scop

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-35657.

Start Free Scan →← Back to CVE-2026-35657