Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2026-000289
sonatype-2026-000289
clawdbot - Incorrect Resource Transfer Between Spheres [CVE-2026-25253]
Published Feb 3, 2026
https://github.com/openclaw/openclaw/security/advisories/GHSA-g8p2-7wf7-98mq
CVSS Score
High
8.8
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
clawdbot
2026.1.10
npm
clawdbot
2026.1.11-1
npm
clawdbot
2026.1.11-2
npm
clawdbot
2026.1.11-3
npm
clawdbot
2026.1.11-4
npm
clawdbot
2026.1.11
npm
clawdbot
2026.1.12-1
npm
clawdbot
2026.1.12-2
npm
clawdbot
2026.1.12
npm
clawdbot
2026.1.13
npm
clawdbot
2026.1.14-1
npm
clawdbot
2026.1.14
npm
clawdbot
2026.1.15
npm
clawdbot
2026.1.16-1
npm
clawdbot
2026.1.16-2
npm
clawdbot
2026.1.16
npm
clawdbot
2026.1.20-1
npm
clawdbot
2026.1.20-2
npm
clawdbot
2026.1.20
npm
clawdbot
2026.1.21-1
npm
clawdbot
2026.1.21-2
npm
clawdbot
2026.1.21
npm
clawdbot
2026.1.22
npm
clawdbot
2026.1.23-1
npm
clawdbot
2026.1.23
npm
clawdbot
2026.1.24-1
npm
clawdbot
2026.1.24-2
npm
clawdbot
2026.1.24-3
npm
clawdbot
2026.1.24
npm
clawdbot
2026.1.4-1
npm
clawdbot
2026.1.4
npm
clawdbot
2026.1.5-1
npm
clawdbot
2026.1.5-2
npm
clawdbot
2026.1.5-3
npm
clawdbot
2026.1.5
npm
clawdbot
2026.1.8-1
npm
clawdbot
2026.1.8-2
npm
clawdbot
2026.1.8
npm
clawdbot
2026.1.9
1-39 of 39
sonatype-2026-000289 | Components Impacted | Sonatype Guide | Sonatype Guide
