CVE-2026-42436 — OpenClaw before 2026.4.14 contains an improper access control vulnerability in browser snapshot, screenshot, and tab routes that fail to consistently validate the final browser target after navigation — CVE Database · The Intelligence Room