CVSS Breakdown
8.8
CVSS Base Score
HIGH
Attack Vector
N/A
Requires physical access to exploit.
CIA Impact
Confidentiality N/A
Integrity N/A
Availability N/A
Insurance Impact Assessment
🛡️
Significant Impact
High-severity vulnerabilities may affect cyber insurance pricing and coverage terms. Demonstrating patch management reduces underwriting friction.
CVE UNKNOWN with CVSS 8.8. OpenClaw before 2026.4.10 contains an insufficient environment variable denylist vulnerability in its exec environment policy that allows operator-supplied overrides of high-risk interpreter startup variables including VIMINIT, EXINIT, LUA_INIT, and HOSTALIASES. Attackers can exploit this by manipul
Assess your exposure
Is your organization vulnerable? Run a free domain exposure scan to check.
Related Threats
CVE-2026-40281
CVSS 10 critical
CVE-2023-34992: A improper neutralization of special elements used in an os command ('os command
CVSS 10 critical
CVE-2023-34976: A SQL injection vulnerability has been reported to affect Video Station. If expl
CVSS 10 critical
CVE-2023-25960: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injecti
CVSS 10 critical
CVE-2023-4994: The Allow PHP in Posts and Pages plugin for WordPress is vulnerable to Remote Co
CVSS 9.9 critical