{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2026-30741", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-03-12T14:27:31.142Z", "dateReserved": "2026-03-04T00:00:00.000Z", "datePublished": "2026-03-11T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-11T15:58:02.891Z"}, "descriptions": [{"lang": "en", "value": "A remote code execution (RCE) vulnerability in OpenClaw Agent Platform v2026.2.6 allows attackers to execute arbitrary code via a Request-Side prompt injection attack."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://github.com/OpenClaw/OpenClaw"}, {"url": "https://www.bilibili.com/video/BV1LoFazeEBM"}, {"url": "https://github.com/Named1ess/CVE-2026-30741"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-94", "lang": "en", "description": "CWE-94 Improper Control of Generation of Code ('Code Injection')"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-03-12T14:26:17.620466Z", "id": "CVE-2026-30741", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-12T14:27:31.142Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2026-30741", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-12T14:26:17.620466Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-94", "description": "CWE-94 Improper Control of Generation of Code ('Code Injection')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-12T14:27:24.950Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://github.com/OpenClaw/OpenClaw"}, {"url": "https://www.bilibili.com/video/BV1LoFazeEBM"}, {"url": "https://github.com/Named1ess/CVE-2026-30741"}], "descriptions": [{"lang": "en", "value": "A remote code execution (RCE) vulnerability in OpenClaw Agent Platform v2026.2.6 allows attackers to execute arbitrary code via a Request-Side prompt injection attack."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-11T15:58:02.891Z"}}}, "cveMetadata": {"cveId": "CVE-2026-30741", "state": "PUBLISHED", "dateUpdated": "2026-03-12T14:27:31.142Z", "dateReserved": "2026-03-04T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-03-11T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*", "matchCriteriaId": "99B48B8D-4C25-4048-9BF0-5B259ED0AA00", "versionEndIncluding": "2026.2.6", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A remote code execution (RCE) vulnerability in OpenClaw Agent Platform v2026.2.6 allows attackers to execute arbitrary code via a Request-Side prompt injection attack."}, {"lang": "es", "value": "Una vulnerabilidad de ejecuci\u00f3n remota de c\u00f3digo (RCE) en OpenClaw Agent Platform v2026.2.6 permite a los atacantes ejecutar c\u00f3digo arbitrario a trav\u00e9s de un ataque de inyecci\u00f3n de prompt del lado de la solicitud."}], "id": "CVE-2026-30741", "lastModified": "2026-03-17T15:51:41.187", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-03-11T16:16:41.530", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "https://github.com/Named1ess/CVE-2026-30741"}, {"source": "cve@mitre.org", "tags": ["Product"], "url": "https://github.com/OpenClaw/OpenClaw"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "https://www.bilibili.com/video/BV1LoFazeEBM"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2026.2.6"}}], "enrichment": {"confidence": 85.0, "confidence_source": "inferred", "scores": [{"score": 85.0, "source": "inferred"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "agent_platform", "vendor": "openclaw"}], "analysis": {"en": {"generated_at": "2026-03-17T17:34:48.235938+00:00", "value": {"mitigation_remediation": ["Apply the official patch or upgrade OpenClaw Agent Platform to a non\u2011vulnerable version.", "If a patch is not yet available, block external access to the vulnerable service with a firewall or isolate the affected host from the network.", "Verify that the patch or workaround has been applied and monitor for any anomalous activity."], "summary": {"action": "Immediate Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "Affected systems are those running OpenClaw Agent Platform version 2026.2.6. The product is identified by the CPE cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*. No other vendors or products are listed or affected.", "description_and_impact": "The OpenClaw Agent Platform v2026.2.6 contains a remote code execution vulnerability caused by a request\u2011side prompt injection flaw. An attacker can manipulate input sent to the platform, causing the executed server\u2011side code to run arbitrary commands. This flaw maps to CWE\u201194, representing code injection. The consequence is full compromise of the affected host, allowing the attacker to gain unrestricted access, install malware, and exfiltrate data.", "risk_and_exploitability": "The CVSS base score is 9.8, indicating critical severity. The EPSS score is below 1%, suggesting low current exploitation probability, but the flaw remains a top\u2011priority vulnerability. The issue is not listed in the CISA KEV catalog. Attackers would need network access to the vulnerable endpoint that accepts user input for the prompt injection; exploitation would be remote and requires no authentication."}}}}, "created": "2026-03-12T10:06:31.366036+00:00", "title": "Remote Code Execution via Request\u2011Side Prompt Injection in OpenClaw Agent Platform v2026.2.6", "updated": "2026-03-20T14:33:41.338868+00:00", "vendors": ["openclaw", "openclaw$PRODUCT$agent_platform"]}