CYBERHAWK / CVE / CVE-2026-41390

CVE-2026-41390

OpenClaw

HIGH CVSS 7.3 vibe

The flaw

Exec allowlist bypass via wrapper persistence for /usr/bin/script and similar tools.

What to do

Update to version 2026.3.28 or later

▸ Scan my repo for CVE-2026-41390

References

NVD CISA KEV OSV GitHub Advisory MITRE News search
First seen 2026-05-01 · Tracked by PickBits CyberHawk · Weekly CVE digest
← All CVEs RSS Scheduled audits