{"vulnerability": "cve-2026-5384", "sightings": [{"uuid": "2a303474-e5eb-4513-8550-be3595b34e12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53843", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moh7qn6agy25", "content": "\ud83d\udfe0 CVE-2026-53843 - High (8.8)\n\nOpenClaw before 2026.5.26 contains an authorization bypass vulnerability where a surviving pairin...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-53843/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-17T02:00:43.038496Z"}, {"uuid": "d3e2e939-fa2b-4d32-a734-05dcf99dd523", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53849", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mogoznygie2a", "content": "\ud83d\udfe0 CVE-2026-53849 - High (8.1)\n\nOpenClaw before 2026.5.7 contains a privilege escalation vulnerability where the allowFrom featur...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-53849/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-16T21:01:31.451241Z"}, {"uuid": "9365d883-f16b-4d4b-a439-322246ce8ec5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53843", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mogpypptkp2i", "content": "CVE-2026-53843 - OpenClaw\nCVE ID : CVE-2026-53843\n \n Published : June 16, 2026, 7:17 p.m. | 1\u00a0hour, 51\u00a0minutes ago\n \n Description : OpenClaw before 2026.5.26 contains an authorization bypass vulnerability where a surviving pairing-scoped device session can re-establish node to...", "creation_timestamp": "2026-06-16T21:18:52.441008Z"}, {"uuid": "66b04677-e9f1-4dfb-8a3c-9faf7673ae5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53849", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mogqe2tzjc2x", "content": "CVE-2026-53849 - OpenClaw\nCVE ID : CVE-2026-53849\n \n Published : June 16, 2026, 7:17 p.m. | 1\u00a0hour, 51\u00a0minutes ago\n \n Description : OpenClaw before 2026.5.7 contains a privilege escalation vulnerability where the allowFrom feature improperly validates Discord account identity ...", "creation_timestamp": "2026-06-16T21:25:13.596688Z"}, {"uuid": "5854c924-8fdd-4418-b2ec-2aa85986fb2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53840", "type": "seen", "source": "https://gist.github.com/alon710/419f4d41351693c7c60ff49637269f97", "content": "# CVE-2026-53840: CVE-2026-53840: Sensitive Header Leakage via Cross-Origin Redirects in OpenClaw MCP Servers\n\n> **CVSS Score:** 6.0\n> **Published:** 2026-06-17\n> **Full Report:** https://cvereports.com/reports/CVE-2026-53840\n\n## Summary\nAn information disclosure vulnerability exists in OpenClaw before version 2026.5.12. The issue resides within the streamable-http Model Context Protocol (MCP) server integration, where the application client automatically forwards operator-configured custom headers during cross-origin HTTP redirects. If an attacker controls or compromises a configured remote MCP endpoint, they can issue redirect responses to exfiltrate highly sensitive data, such as API keys or tenant-routing credentials, to unauthorized external origins.\n\n## TL;DR\nOpenClaw versions prior to 2026.5.12 leak configured custom HTTP headers to third-party domains when an MCP server returns a redirect response. Attackers can leverage this behavior to capture sensitive API keys and tokens.\n\n## Technical Details\n\n- **CWE ID**: CWE-522: Insufficiently Protected Credentials\n- **Attack Vector**: Network\n- **CVSS v4.0 Base Score**: 6.0 (Medium)\n- **CVSS v3.1 Base Score**: 6.8 (Medium)\n- **EPSS Score**: 0.00223 (Percentile: 12.73%)\n- **Exploit Status**: No public PoCs available\n- **CISA KEV Status**: Not listed\n\n## Affected Systems\n\n- OpenClaw instances utilizing streamable-http Model Context Protocol servers configured with custom headers.\n- **openclaw**: < 2026.5.12 (Fixed in: `2026.5.12`)\n\n## Mitigation\n\n- Upgrade OpenClaw to version 2026.5.12 or newer to ensure origin validation checks are enforced on redirects.\n- Rotate all custom authentication credentials and API tokens configured within the streamable-http configuration parameters.\n- Audit existing Model Context Protocol configuration paths to verify that only highly trusted endpoints are integrated.\n\n**Remediation Steps:**\n1. Access the host system running OpenClaw and verify the currently installed version using package management tools.\n2. Update the openclaw dependency in your project to version 2026.5.12 using your package manager.\n3. Identify all configured credentials in the `mcp.servers` configuration file.\n4. Revoke the active tokens on the remote services, generate new secrets, and update the OpenClaw configuration file with the new credentials.\n5. Restart the OpenClaw service to apply the configuration updates and load the patched libraries.\n\n## References\n\n- [GitHub Security Advisory GHSA-rjxq-qqhf-8hwh](https://github.com/openclaw/openclaw/security/advisories/GHSA-rjxq-qqhf-8hwh)\n- [VulnCheck Security Advisory](https://www.vulncheck.com/advisories/openclaw-custom-header-leakage-via-mcp-streamable-http-cross-origin-redirects)\n- [OpenClaw Project Repository](https://github.com/openclaw/openclaw)\n- [NVD CVE-2026-53840 Portal](https://nvd.nist.gov/vuln/detail/CVE-2026-53840)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-53840) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-17T18:11:20.000000Z"}]}