CVE-2026-26322

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.2.14

Description The Gateway tool in OpenClaw accepted a tool-supplied gatewayUrl without sufficient restrictions, potentially causing the OpenClaw host to attempt outbound WebSocket connections to user-specified targets. This requires the ability to invoke tools that accept gatewayUrl overrides. The issue stemmed from tool call paths allowing gatewayUrl overrides to flow into the Gateway WebSocket client without validation, enabling connections to non-gateway endpoints like localhost services, private network addresses, or cloud metadata IPs. In most cases, this results in outbound connection attempts and errors. However, if the target speaks WebSocket and is reachable, further interaction may be possible.

Recommendations Versions prior to 2026.2.14 should be updated to version 2026.2.14 or later.