VulnWatch Monday: CVE-2026-22172 🔓

🦞 Yekai Chen (aka LUOYEcode) has detected a critical vulnerability affecting OpenClaw versions prior to 2026.3.12.

🔧 Fix in OpenClaw 2026.3.12.

🔎 GitHub advisory: https://github.com/openclaw/openclaw/security/advisories/GHSA-rqpp-rjj8-7wv8
🐞 VulnCheck advisory: https://www.vulncheck.com/advisories/openclaw-scope-elevation-in-websocket-shared-auth-connections
💾 View JSON: https://cveawg.mitre.org/api/cve/CVE-2026-22172

VulnWatch Monday: CVE-2026-3611 🔓

Gjoko Krstic, from Zero Science Lab reported a maximum-severity vulnerability in Honeywell's IQ4x building management controller.

The flaw was publicly disclosed by ICS Cert and is tracked as CVE-2026-3611.

🔎 With no user module configured, security is disabled by design and the system operates under a System Guest (level 100) context, granting read/write privileges to any party able to reach the HTTP interface.

⚙️ Authentication controls are only enforced after a web user is created via U.htm, which dynamically enables the user module. Because this function is accessible prior to authentication, a remote user can create a new account with administrative read/write permissions enabling the user module and imposing authentication under attacker-controlled credentials. This action can effectively lock legitimate operators out of local and web-based configuration and administration.

🔧 According to CISA, Honeywell is aware of the issue, but has not released a fix. For more information, users are urged to contact Honeywell directly.

⚠️ CISA advisory: https://www.cisa.gov/news-events/ics-advisories/icsa-26-069-03
💾 View CSAF: https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-069-03.json

𝐂𝐫𝐢𝐭𝐢𝐜𝐚𝐥 𝐙𝐞𝐫𝐨-𝐂𝐥𝐢𝐜𝐤 𝐅𝐥𝐚𝐰 𝐢𝐧 𝐧𝟖𝐧 𝐀𝐥𝐥𝐨𝐰𝐬 𝐅𝐮𝐥𝐥 𝐒𝐞𝐫𝐯𝐞𝐫 𝐂𝐨𝐦𝐩𝐫𝐨𝐦𝐢𝐬𝐞

Researchers from Pillar Security have found two new critical vulnerabilities in self-hosted and cloud n8n deployments.

n8n is a popular open-source workflow automation platform powering hundreds of thousands of enterprise AI systems worldwide.

One of the flaws, tracked as CVE-2026-27493, can lead to full takeover of a server without the target clicking on anything and without the attacker needing to be authenticated.

🔧Fix? n8n cloud users should have already benefitted from automated fixes.

People self-hosting n8n instances are urged to update to versions 2.10.1, 2.9.3 or 1.123.22 of n8n, depending on their release channel.

Pillar Security also recommended users to rotate all stored credentials if a vulnerable workflow is found in their n8n environment.

https://www.infosecurity-magazine.com/news/critical-zeroclick-flaw-n8n-pillar/

𝐖𝐡𝐚𝐭 𝐂𝐈𝐒𝐎𝐬 𝐒𝐡𝐨𝐮𝐥𝐝 𝐊𝐧𝐨𝐰 (𝐀𝐧𝐝 𝐃𝐨) 𝐀𝐛𝐨𝐮𝐭 𝐎𝐩𝐞𝐧𝐂𝐥𝐚𝐰

OpenClaw has exploded onto the scene and govts are already slamming on the brakes. I spoke to experts to explore what CISOs should do to contain its vulnerabilities.

https://www.infosecurity-magazine.com/news-features/what-cisos-should-know-and-do/

𝐄𝐱𝐜𝐥𝐮𝐬𝐢𝐯𝐞 𝐈𝐧𝐭𝐞𝐫𝐯𝐢𝐞𝐰 𝐰𝐢𝐭𝐡 𝐎𝐩𝐞𝐧𝐂𝐥𝐚𝐰'𝐬 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐀𝐝𝐯𝐢𝐬𝐨𝐫

@openclaw's weak spots have not gone unnoticed and Jamieson O'Reilly was among the first to call them out. Now, he’s been appointed its security representative.

🎧 https://www.infosecurity-magazine.com/podcasts/exclusive-interview-openclaw/

In a soon-to-be released interview, Jamieson O'Reilly, OpenClaw’s security advisor, warned that we need to develop more ways to “scan AI tools” for detecting “human-language malware.”

With the Promptfoo acquisition, OpenAI now wants to do just that.

https://www.infosecurity-magazine.com/news/openai-promptfoo-deal-agentic-ai/

VulnWatch Monday: CVE-2026-27944 🔓

A critical vulnerability in Nginx UI allows unauthenticated attackers to download and decrypt full system backups. It affects all versions before 2.3.2.

⚙️ The flaw is caused by two security failures: the /api/backup endpoint lacks authentication, and the system exposes the Base64‑encoded AES‑256 encryption key and IV in the X-Backup-Security HTTP header.

Attackers can simply send a GET request to download encrypted backup archives and immediately decrypt them using the leaked keys.

🔓 Decrypted backups may reveal user credentials (database.db), configuration files (app.ini), SSL certificates, private keys and Nginx configurations, enabling attackers to take over the Nginx UI console, intercept traffic or move deeper into the network.

A public Python PoC demonstrating the exploit is already available.

🔧 Fix? Yes: Nginx UI version 2.3.3

🔎 GitHub advisory: https://github.com/0xJacky/nginx-ui/security/advisories/GHSA-g9w5-qffc-6762
💾 View JSON: https://cveawg.mitre.org/api/cve/CVE-2026-27944

VulnWatch Monday: CVE-2025-71210 🔓

Trend Micro has issued patches addressing several vulnerabilities in Apex One, with severity levels ranging from high to critical.

The flaws, identified as CVE‑2025‑71210 through CVE‑2025‑71217, carry CVSS v3 scores between 7.2 and 9.8.

Some of the issues impact the management console and could potentially allow remote code execution.

According to a February 2026 advisory, the affected products include Apex One 2019 (on-premises) for Windows and Apex One as a Service, also known as "Trend Vision One Endpoint – Standard Endpoint Protection" on Windows.

🔧 Fix? Trend Micro advises customers to upgrade to the most recent available builds - CP Build 14136 and Security Agent Build 14.0.20315 -, noting that earlier patches may not fully resolve all aspects of the vulnerabilities.

🔎 Trend Micro advisory: https://success.trendmicro.com/en-US/solution/KA-0022458