📦

openclaw\/voice-call

Vendor: openclaw

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 4 Total Indexed

Avg. EPSS 0.14% Exploit Prob.

Latest CVE CVE-2026-32062 Mar 11

Security Vulnerability Index

Page 1 / 1

8.7 CVSS

CVE-2026-32062

OpenClaw versions 2026.2.21-2 up to, but not including, 2026.2.22, and @openclaw/voice-call versions 2026.2.21 up to, but not including, 2026.2.22 accept media-stream WebSocket upgrades before stream validation, allowing unauthenticated clients to establish connections. Remote attackers can hold idle pre-authenticated sockets open to consume connection resources and degrade service availability for legitimate streams.

EPSS: 0.14%

Severity: HIGH

Mar 11, 2026

Displaying 1 of 4 Total Entries

Total 1 Sections