{"vulnerability": "cve-2026-5382", "sightings": [{"uuid": "c8112d38-d54e-44e5-b05b-cadf99eafd5c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53829", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mo5542bayd2j", "content": "CVE-2026-53829 - OpenClaw\nCVE ID : CVE-2026-53829\n \n Published : June 12, 2026, 10:16 p.m. | 2\u00a0hours, 51\u00a0minutes ago\n \n Description : OpenClaw before 2026.5.18 contains an approval display truncation vulnerability allowing authenticated users to hide command suffixes from appr...", "creation_timestamp": "2026-06-13T01:46:45.598179Z"}, {"uuid": "d6027b22-f2f3-40dd-912d-834f204e1d2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53823", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mo55eypeht2v", "content": "CVE-2026-53823 - OpenClaw\nCVE ID : CVE-2026-53823\n \n Published : June 12, 2026, 10:16 p.m. | 2\u00a0hours, 51\u00a0minutes ago\n \n Description : OpenClaw before 2026.5.3 contains a privilege escalation vulnerability in the allowFrom feature that binds to mutable Slack display names. Atta...", "creation_timestamp": "2026-06-13T01:51:45.887907Z"}, {"uuid": "4a59c15c-b965-4dae-acaa-313a552d214a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53822", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mo55usgwi42y", "content": "\ud83d\udfe0 CVE-2026-53822 - High (8.8)\n\nOpenClaw before 2026.5.18 contains a command injection vulnerability where shell wrapper argv cou...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-53822/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-13T02:02:42.276906Z"}, {"uuid": "8b2a0abe-3dc5-4f73-889e-5d5afa0c88f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53828", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3moexzfti3f2v", "content": "\ud83d\udccc CVE-2026-53828 - OpenClaw before 2026.5.6 contains an authorization bypass vulnerability in native command handling that allows authenticated senders to execute owner-... https://www.cyberhub.blog/cves/CVE-2026-53828", "creation_timestamp": "2026-06-16T04:37:06.373989Z"}, {"uuid": "4b19becc-362f-4e13-a62f-99a1d34f916d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53821", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3moezp3vgcp2a", "content": "\ud83d\udccc CVE-2026-53821 - OpenClaw before 2026.5.18 accepts WebSocket client-declared operator scopes before binding to server-approved pairing or trusted-proxy authorization b... https://www.cyberhub.blog/cves/CVE-2026-53821", "creation_timestamp": "2026-06-16T05:07:07.706489Z"}, {"uuid": "aa7911fb-168b-4a9a-baa6-94b93e57e9fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53822", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mof3eoppxr27", "content": "\ud83d\udccc CVE-2026-53822 - OpenClaw before 2026.5.18 contains a command injection vulnerability where shell wrapper argv could change between approval and execution. Attackers c... https://www.cyberhub.blog/cves/CVE-2026-53822", "creation_timestamp": "2026-06-16T05:37:05.696765Z"}, {"uuid": "784a49b3-6e51-4e6f-9c78-c3e7305667af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53823", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mof52ftlwl2o", "content": "\ud83d\udccc CVE-2026-53823 - OpenClaw before 2026.5.3 contains a privilege escalation vulnerability in the allowFrom feature that binds to mutable Slack display names. Attackers w... https://www.cyberhub.blog/cves/CVE-2026-53823", "creation_timestamp": "2026-06-16T06:07:08.974860Z"}, {"uuid": "73ea484d-2555-45ff-add2-986fe8d30334", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53829", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mofafocrem27", "content": "\ud83d\udccc CVE-2026-53829 - OpenClaw before 2026.5.18 contains an approval display truncation vulnerability allowing authenticated users to hide command suffixes from approvers. ... https://www.cyberhub.blog/cves/CVE-2026-53829", "creation_timestamp": "2026-06-16T07:07:09.480905Z"}]}