[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"public-cve-CVE-2026-53814":3,"news-by-cve-CVE-2026-53814-10":49},{"cvss_severity":4,"nvd_cvss_score":5,"nvd_cvss_severity":4,"attack_technique_count":6,"vendor_context":7,"id":16,"affected_product_count":17,"affected_products_preview":18,"state":22,"date_published":23,"cvss_version":24,"cvss_vector":25,"has_exploit":26,"has_ai_summary":26,"assigner_org":27,"kev_ransomware_use":26,"has_workaround":26,"nuclei_template_count":6,"attack_techniques":28,"source_identifier":29,"cvss_source":30,"title":31,"nvd_cvss_vector":25,"has_solution":26,"reference_count":32,"remediation_summary":33,"references_preview":34,"has_nuclei_templates":26,"has_attack_graph":26,"weaknesses":39,"date_updated":42,"in_kev":26,"exploit_count":6,"sectors":43,"cvss_score":5,"description":44,"tags":45,"attack_tactics":46,"sources":47,"assigner_short_name":27},"HIGH",8.3,0,[8],{"vendor":9,"vendor_type":10,"aliases":11,"sector":14,"subsector":15},"openclaw","oss-project",[12,13],"crabbox","clawdbot","security-products","endpoint-av-edr","CVE-2026-53814",1,[19],{"vendor":20,"product":20,"sector":14,"subsector":15,"deployment":21},"OpenClaw","embedded","PUBLISHED","2026-06-11T20:08:31Z","3.1","CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",false,"",[],"83251b91-4cc7-4094-a5c7-464a1b83ea10","nvd","OpenClaw \u003C 2026.5.20 - Privilege Escalation via Hook-Triggered CLI MCP Tool Authority",2,{"has_patch":26,"has_workaround":26},[35,37],{"url":36,"source":30},"https://github.com/openclaw/openclaw/security/advisories/GHSA-6fvr-66p3-3qj4",{"url":38,"source":30},"https://www.vulncheck.com/advisories/openclaw-privilege-escalation-via-hook-triggered-cli-mcp-tool-authority",[40],{"cwe_id":41,"name":27},"CWE-266","2026-06-11T21:16:23Z",[14],"OpenClaw before 2026.5.20 contains a privilege escalation vulnerability where hook-triggered agent runs incorrectly receive owner-scoped MCP loopback authority instead of hook-appropriate scope. Attackers with a valid hook token can exploit the /hooks/agent endpoint to cause spawned CLI runtimes to access or invoke owner-only MCP tools, potentially executing privileged actions like persistent cron state modifications.",[],[],[48,30],"cvelist",{"cve_id":16,"items":50,"total":6},[]]