CVE-2026-32035

Description

OpenClaw: Discord voice transcript owner-flag omission could expose owner-only tools in mixed-trust channels

Predictions

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

References

• https://github.com/openclaw/openclaw/security/advisories/GHSA-wpg9-4g4v-f9rc
• https://nvd.nist.gov/vuln/detail/CVE-2026-32035
• https://github.com/openclaw/openclaw
• https://www.vulncheck.com/advisories/openclaw-missing-owner-flag-validation-in-discord-voice-transcript-handler