9 CVEs in 4 Days — OpenClaw March 2026 Vulnerability Flood Including CVSS 9.9 Privilege Escalation

Between March 18-21 2026 nine CVEs disclosed for OpenClaw. CVE-2026-32922 scored 9.9 CVSS allowing any authenticated user to escalate to admin. Six high severity two medium. jgamblin/OpenClawCVEs tracker lists 156 total advisories with 128 awaiting assignment.

Product Idea from this Signal

A security service that auto-patches OpenClaw CVEs within hours of disclosure before attackers exploit them

3.7k ▲

OpenClaw shipped 9 CVEs in 4 days (March 2026) including a CVSS 9.9 privilege escalation affecting 135K+ exposed instances. Most operators have no way to know which CVEs affect their version, no automated patching, and no coordination between the flood of advisories (156+ total) and their actual attack surface. This tool continuously monitors CVE feeds, maps each advisory to your installed version and enabled features, and applies safe mitigations automatically while queuing risky patches for human approval.

SECURITYCLIDEVTOOLOPEN-SOURCESYSADMIN

CompetitiveView Opportunity →