{"vulnerability": "cve-2026-53838", "sightings": [{"uuid": "26c81835-817d-491a-8cfa-03d7413a1b03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53838", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mobvlgjrvw25", "content": "\ud83d\udea8  ALERT: CVE-2026-53838\n\nCVSS 9.8/10\n\n\ud83d\udccb WHAT IT IS:\nOpenClaw before 2026.5.27 contains a state mutation vulnerability in node pairing reconnection that allows paired nodes to confuse approval scope decisions. Attackers can exploit reconnection logic to restore or present broader node authority than", "creation_timestamp": "2026-06-14T23:15:30.313159Z"}, {"uuid": "01d647c4-d8d2-48fe-b171-705cb3069985", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53838", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3moawsv5pdd2i", "content": "CVE-2026-53838 - Critical supply chain attack in Openclaw. Node pairing reconnection flaw allows authority scope bypass. CVSS 9.8. No patch yet - mitigate by restricting node access. #CVE #Openclaw #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-53838/", "creation_timestamp": "2026-06-14T14:04:54.859084Z"}]}