CVE-2026-42422 Blast Radius

HIGH • CVSS 8.8OpenClaw before 2026.4.8 contains a role bypass vulnerability in the device.token.rotate function that allows minting tokens for unapproved roles. Att

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2026-42422.

Start Free Scan →← Back to CVE-2026-42422