Publish GHSA-6mgf-v5j7-45cr

Author: advisory-database[bot]

advisories/github-reviewed/2026/03/GHSA-6mgf-v5j7-45cr/GHSA-6mgf-v5j7-45cr.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-6mgf-v5j7-45cr",
-  "modified": "2026-03-23T21:54:49Z",
+  "modified": "2026-03-30T13:31:55Z",
   "published": "2026-03-09T19:54:20Z",
   "aliases": [
     "CVE-2026-32913"
@@ -11,7 +11,11 @@
   "severity": [
     {
       "type": "CVSS_V3",
-      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:L/A:N"
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:L/SI:L/SA:N"
     }
   ],
   "affected": [
@@ -43,6 +47,10 @@
       "type": "WEB",
       "url": "https://github.com/openclaw/openclaw/security/advisories/GHSA-6mgf-v5j7-45cr"
     },
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32913"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/openclaw/openclaw/commit/46715371b0612a6f9114dffd1466941ac476cef5"
@@ -54,6 +62,10 @@
     {
       "type": "WEB",
       "url": "https://github.com/openclaw/openclaw/releases/tag/v2026.3.7"
+    },
+    {
+      "type": "WEB",
+      "url": "https://vulncheck.com/advisories/openclaw-mar-custom-authorization-header-leakage-via-cross-origin-redirects"
     }
   ],
   "database_specific": {
@@ -65,6 +77,6 @@
     "severity": "HIGH",
     "github_reviewed": true,
     "github_reviewed_at": "2026-03-09T19:54:20Z",
-    "nvd_published_at": null
+    "nvd_published_at": "2026-03-23T22:16:30Z"
   }
 }