What is GHSA-6jm4-83g2-35gv?

GHSA-6jm4-83g2-35gv is a security advisory published by GitHub Security Advisories with Medium severity. OpenClaw before 2026.4.29 contains a session visibility check bypass vulnerability in shared...

Which CVE IDs does GHSA-6jm4-83g2-35gv cover?

GHSA-6jm4-83g2-35gv covers the following CVE IDs: CVE-2026-53844. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-6jm4-83g2-35gv?

GHSA-6jm4-83g2-35gv has a CVSS v3 base score of 6.5, published by GitHub Security Advisories.

GHSA-6jm4-83g2-35gvMediumCVSS 6.5

OpenClaw before 2026.4.29 contains a session visibility check bypass vulnerability in shared...

Vendor

GitHub Security Advisories

Published

June 16, 2026

Last Modified

June 16, 2026

🔗 CVE IDs covered (1)

CVE-2026-53844 →

📋 Description

OpenClaw before 2026.4.29 contains a session visibility check bypass vulnerability in shared memory search that allows authenticated callers to access memory entries without proper authorization. Attackers can skip session visibility guards on the search path to retrieve memory entries that should not be visible to their session.

🔗 References (4)

https://github.com/openclaw/openclaw/security/advisories/GHSA-72fw-cqh5-f324
https://nvd.nist.gov/vuln/detail/CVE-2026-53844
https://www.vulncheck.com/advisories/openclaw-session-visibility-check-bypass-in-shared-memory-search
https://github.com/advisories/GHSA-6jm4-83g2-35gv