New: Corgea AI Pentesting — autonomous penetration testing in hours, not weeks
MEDIUM 6.5 npm

Duplicate Advisory: memory-wiki shared search could miss session visibility checks

GHSA-6jm4-83g2-35gv

Published · Modified

Description

Duplicate Advisory

This advisory has been withdrawn because it is a duplicate of GHSA-72fw-cqh5-f324. This link is maintained to preserve external references.

Original DescriptionOpenClaw before 2026.4.29 contains a session visibility check bypass vulnerability in shared memory search that allows authenticated callers to access memory entries without proper authorization. Attackers can skip session visibility guards on the search path to retrieve memory entries that should not be visible to their session.

Ready to move

Start Securing

Free, no credit card | First findings in minutes