CYBERHAWK / CVE / CVE-2026-43566

CVE-2026-43566

OpenClaw

CRITICAL CVSS 9.1 ai

The flaw

Privilege escalation via heartbeat owner downgrade logic bypass with untrusted webhook wake events.

What to do

Update to OpenClaw 2026.4.14 or later

▸ Scan my repo for CVE-2026-43566

References

NVD CISA KEV OSV GitHub Advisory MITRE News search
First seen 2026-05-08 · Tracked by PickBits CyberHawk · Weekly CVE digest
← All CVEs RSS Scheduled audits