[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"public-cve-CVE-2026-53812":3,"news-by-cve-CVE-2026-53812-10":64},{"nvd_cvss_vector":4,"cvss_source":5,"in_kev":6,"affected_products_preview":7,"tags":13,"has_attack_graph":14,"id":15,"cvss_vector":4,"weaknesses":16,"attack_techniques":20,"has_nuclei_templates":6,"date_published":35,"date_updated":36,"assigner_short_name":19,"nvd_cvss_severity":37,"attack_technique_count":38,"affected_product_count":39,"nuclei_template_count":40,"sectors":41,"source_identifier":42,"cvss_score":43,"has_exploit":6,"vendor_context":44,"references_preview":51,"has_ai_summary":6,"cvss_version":56,"nvd_cvss_score":43,"reference_count":38,"attack_tactics":57,"sources":58,"exploit_count":40,"description":60,"cvss_severity":37,"kev_ransomware_use":6,"has_solution":6,"remediation_summary":61,"title":62,"assigner_org":19,"has_workaround":6,"state":63},"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","nvd",false,[8],{"subsector":9,"deployment":10,"vendor":11,"product":11,"sector":12},"endpoint-av-edr","embedded","OpenClaw","security-products",[],true,"CVE-2026-53812",[17],{"cwe_id":18,"name":19},"CWE-918","",[21,28],{"technique_id":22,"technique_name":23,"tactic":24,"tactic_name":25,"url":26,"confidence":27},"T1090","Proxy","command-and-control","Command and Control","https://attack.mitre.org/techniques/T1090/","high",{"technique_id":29,"technique_name":30,"tactic":31,"tactic_name":32,"url":33,"confidence":34},"T1190","Exploit Public-Facing Application","initial-access","Initial Access","https://attack.mitre.org/techniques/T1190/","medium","2026-06-11T20:07:51Z","2026-06-11T21:16:23Z","HIGH",2,1,0,[12],"83251b91-4cc7-4094-a5c7-464a1b83ea10",7.7,[45],{"vendor":46,"vendor_type":47,"aliases":48,"sector":12,"subsector":9},"openclaw","oss-project",[49,50],"crabbox","clawdbot",[52,54],{"source":5,"url":53},"https://github.com/openclaw/openclaw/security/advisories/GHSA-2hfg-4fh4-qp7f",{"url":55,"source":5},"https://www.vulncheck.com/advisories/openclaw-private-network-navigation-bypass-via-browser-act-interactions","3.1",[25,32],[59,5],"cvelist","OpenClaw before 2026.5.18 contains a server-side request forgery vulnerability in browser control that allows authenticated users to bypass private-network navigation checks through Playwright act interactions. Attackers can trigger navigation to private-network targets via action-triggered redirects and subsequently read restricted page content using browser evaluation capabilities.",{"has_patch":6,"has_workaround":6},"OpenClaw \u003C 2026.5.18 - Private-Network Navigation Bypass via Browser Act Interactions","PUBLISHED",{"cve_id":15,"items":65,"total":40},[]]