Ghostwire
Home / Vulnerabilities / CVE-2026-41372

CVE-2026-41372: OpenClaw before 2026.4.2 fails to normalize trailing-dot localhost hosts in remote CDP discovery...

MEDIUM CVSS 5.5

Published: April 28, 2026 | Last Modified: April 28, 2026

Description

OpenClaw before 2026.4.2 fails to normalize trailing-dot localhost hosts in remote CDP discovery...

Ghostwire Analysis — What This Means Practically

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

Security Coverage (2 articles)

Tenable CVEs
CVE-2026-41372
 CVE Feed
CVE-2026-41372 - OpenClaw < 2026.4.2 - Loopback Protection Bypass via Trailing-Dot Localhost in CDP Discovery

References