Publish Advisories

GHSA-hc5h-pmr3-3497
GHSA-3mwp-wvh9-7528
GHSA-53mr-6c8q-9789
GHSA-658g-p7jg-wx5g
GHSA-8x5q-pvf5-64mp
GHSA-jjhc-v7c2-5hh6
GHSA-qcmw-8mm4-4p28
GHSA-vr2g-rhm5-q4jr
GHSA-wc4h-2348-jc3p

Author: advisory-database[bot]

advisories/github-reviewed/2026/03/GHSA-hc5h-pmr3-3497/GHSA-hc5h-pmr3-3497.json

@@ -1,15 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-hc5h-pmr3-3497",
-  "modified": "2026-03-31T23:50:22Z",
+  "modified": "2026-04-06T23:39:43Z",
   "published": "2026-03-31T23:50:22Z",
-  "aliases": [],
+  "aliases": [
+    "CVE-2026-33579"
+  ],
   "summary": "OpenClaw: /pair approve command path omitted caller scope subsetting and reopened device pairing escalation",
-  "details": "## Summary\n\nThe `/pair approve` command path called device approval without forwarding caller scopes into the core approval check.\n\n## Impact\n\nA caller that held pairing privileges but not admin privileges could approve a pending device request asking for broader scopes, including admin access.\n\n## Affected Component\n\n`extensions/device-pair/index.ts, src/infra/device-pairing.ts`\n\n## Fixed Versions\n\n- Affected: `<= 2026.3.24`\n- Patched: `>= 2026.3.28`\n- Latest stable `2026.3.28` contains the fix.\n\n## Fix\n\nFixed by commit `4ee4960de2` (`Pairing: forward caller scopes during approval`).",
+  "details": "## Summary\n\nThe `/pair approve` command path called device approval without forwarding caller scopes into the core approval check.\n\n## Impact\n\nA caller that held pairing privileges but not admin privileges could approve a pending device request asking for broader scopes, including admin access.\n\n## Affected Component\n\n`extensions/device-pair/index.ts, src/infra/device-pairing.ts`\n\n## Fixed Versions\n\n- Affected: `<= 2026.3.24`\n- Patched: `>= 2026.3.28`\n- Latest stable `2026.3.28` contains the fix.\n\n## Fix\n\nFixed by commit `4ee4960de2` (`Pairing: forward caller scopes during approval`).\n\nOpenClaw thanks @AntAISecurityLab for reporting.",
   "severity": [
     {
       "type": "CVSS_V4",
-      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H"
     }
   ],
   "affected": [
@@ -41,20 +43,28 @@
       "type": "WEB",
       "url": "https://github.com/openclaw/openclaw/security/advisories/GHSA-hc5h-pmr3-3497"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33579"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/openclaw/openclaw/commit/4ee4960de2330b5322127f925f3687dc6f105be1"
     },
     {
       "type": "PACKAGE",
       "url": "https://github.com/openclaw/openclaw"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.vulncheck.com/advisories/openclaw-privilege-escalation-via-missing-caller-scope-validation-in-device-pair-approval"
     }
   ],
   "database_specific": {
     "cwe_ids": [
       "CWE-863"
     ],
-    "severity": "HIGH",
+    "severity": "CRITICAL",
     "github_reviewed": true,
     "github_reviewed_at": "2026-03-31T23:50:22Z",
     "nvd_published_at": null

advisories/github-reviewed/2026/04/GHSA-3mwp-wvh9-7528/GHSA-3mwp-wvh9-7528.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-3mwp-wvh9-7528",
-  "modified": "2026-04-03T15:35:48Z",
+  "modified": "2026-04-06T23:40:16Z",
   "published": "2026-04-03T15:35:48Z",
   "aliases": [
     "CVE-2026-34756"
@@ -40,6 +40,10 @@
       "type": "WEB",
       "url": "https://github.com/vllm-project/vllm/security/advisories/GHSA-3mwp-wvh9-7528"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34756"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/vllm-project/vllm/pull/37952"
@@ -60,6 +64,6 @@
     "severity": "MODERATE",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-03T15:35:48Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-06T16:16:36Z"
   }
 }

advisories/github-reviewed/2026/04/GHSA-53mr-6c8q-9789/GHSA-53mr-6c8q-9789.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-53mr-6c8q-9789",
-  "modified": "2026-04-03T21:59:31Z",
+  "modified": "2026-04-06T23:40:36Z",
   "published": "2026-04-03T21:59:31Z",
   "aliases": [
     "CVE-2026-35029"
@@ -40,6 +40,10 @@
       "type": "WEB",
       "url": "https://github.com/BerriAI/litellm/security/advisories/GHSA-53mr-6c8q-9789"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-35029"
+    },
     {
       "type": "PACKAGE",
       "url": "https://github.com/BerriAI/litellm"
@@ -52,6 +56,6 @@
     "severity": "HIGH",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-03T21:59:31Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-06T17:17:12Z"
   }
 }

advisories/github-reviewed/2026/04/GHSA-658g-p7jg-wx5g/GHSA-658g-p7jg-wx5g.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-658g-p7jg-wx5g",
-  "modified": "2026-04-02T18:34:04Z",
+  "modified": "2026-04-06T23:41:01Z",
   "published": "2026-04-02T18:34:04Z",
   "aliases": [
     "CVE-2026-34841"
@@ -43,6 +43,10 @@
       "type": "WEB",
       "url": "https://github.com/usebruno/bruno/security/advisories/GHSA-658g-p7jg-wx5g"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34841"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/axios/axios/issues/10604"
@@ -73,6 +77,6 @@
     "severity": "CRITICAL",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-02T18:34:04Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-06T17:17:10Z"
   }
 }

advisories/github-reviewed/2026/04/GHSA-8x5q-pvf5-64mp/GHSA-8x5q-pvf5-64mp.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-8x5q-pvf5-64mp",
-  "modified": "2026-04-03T21:52:33Z",
+  "modified": "2026-04-06T23:40:20Z",
   "published": "2026-04-03T21:52:33Z",
   "aliases": [
     "CVE-2026-34764"
@@ -97,6 +97,10 @@
       "type": "WEB",
       "url": "https://github.com/electron/electron/security/advisories/GHSA-8x5q-pvf5-64mp"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34764"
+    },
     {
       "type": "PACKAGE",
       "url": "https://github.com/electron/electron"
@@ -109,6 +113,6 @@
     "severity": "LOW",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-03T21:52:33Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-06T16:16:36Z"
   }
 }

advisories/github-reviewed/2026/04/GHSA-jjhc-v7c2-5hh6/GHSA-jjhc-v7c2-5hh6.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-jjhc-v7c2-5hh6",
-  "modified": "2026-04-03T21:59:50Z",
+  "modified": "2026-04-06T23:40:39Z",
   "published": "2026-04-03T21:59:50Z",
   "aliases": [
     "CVE-2026-35030"
@@ -40,6 +40,10 @@
       "type": "WEB",
       "url": "https://github.com/BerriAI/litellm/security/advisories/GHSA-jjhc-v7c2-5hh6"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-35030"
+    },
     {
       "type": "PACKAGE",
       "url": "https://github.com/BerriAI/litellm"
@@ -52,6 +56,6 @@
     "severity": "CRITICAL",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-03T21:59:50Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-06T17:17:12Z"
   }
 }

advisories/github-reviewed/2026/04/GHSA-qcmw-8mm4-4p28/GHSA-qcmw-8mm4-4p28.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-qcmw-8mm4-4p28",
-  "modified": "2026-04-03T04:02:47Z",
+  "modified": "2026-04-06T23:40:30Z",
   "published": "2026-04-03T04:02:47Z",
   "aliases": [
     "CVE-2026-34992"
@@ -78,6 +78,10 @@
       "type": "WEB",
       "url": "https://github.com/antrea-io/antrea/security/advisories/GHSA-qcmw-8mm4-4p28"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34992"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/antrea-io/antrea/pull/7757"
@@ -106,6 +110,6 @@
     "severity": "HIGH",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-03T04:02:47Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-06T17:17:12Z"
   }
 }

advisories/github-reviewed/2026/04/GHSA-vr2g-rhm5-q4jr/GHSA-vr2g-rhm5-q4jr.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-vr2g-rhm5-q4jr",
-  "modified": "2026-04-03T04:00:57Z",
+  "modified": "2026-04-06T23:40:24Z",
   "published": "2026-04-03T04:00:57Z",
   "aliases": [
     "CVE-2026-34989"
@@ -43,19 +43,23 @@
       "type": "WEB",
       "url": "https://github.com/ci4-cms-erp/ci4ms/security/advisories/GHSA-vr2g-rhm5-q4jr"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34989"
+    },
     {
       "type": "PACKAGE",
       "url": "https://github.com/ci4-cms-erp/ci4ms"
     }
   ],
   "database_specific": {
     "cwe_ids": [
-      "CWE-79",
-      "CWE-269"
+      "CWE-269",
+      "CWE-79"
     ],
     "severity": "CRITICAL",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-03T04:00:57Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-06T17:17:12Z"
   }
 }

advisories/github-reviewed/2026/04/GHSA-wc4h-2348-jc3p/GHSA-wc4h-2348-jc3p.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-wc4h-2348-jc3p",
-  "modified": "2026-04-03T03:30:53Z",
+  "modified": "2026-04-06T23:41:04Z",
   "published": "2026-04-03T03:30:53Z",
   "aliases": [
     "CVE-2026-35036"
@@ -40,6 +40,10 @@
       "type": "WEB",
       "url": "https://github.com/lin-snow/Ech0/security/advisories/GHSA-wc4h-2348-jc3p"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-35036"
+    },
     {
       "type": "PACKAGE",
       "url": "https://github.com/lin-snow/Ech0"
@@ -52,6 +56,6 @@
     "severity": "HIGH",
     "github_reviewed": true,
     "github_reviewed_at": "2026-04-03T03:30:53Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-04-06T17:17:12Z"
   }
 }