CVE-2026-25253

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.1.29

Description OpenClaw, formerly known as Clawdbot and Moltbot, is vulnerable to a critical remote code execution (RCE) vulnerability, tracked as CVE-2026-25253. This flaw allows attackers to steal authentication tokens via a crafted URL, enabling them to hijack user sessions and potentially gain full control of the system. The vulnerability stems from improper validation of the

gatewayUrl

parameter, which allows attackers to initiate a WebSocket connection and exfiltrate sensitive data. Exploitation can occur with a single click on a malicious link. Over 17,500 instances were found exposed, and the vulnerability has been actively exploited in the wild. The vulnerability allows attackers to bypass security measures and potentially gain full system access. The issue has been addressed in version 2026.1.29.

Recommendations OpenClaw versions prior to 2026.1.29 are vulnerable. Upgrade to version 2026.1.29 or later immediately to mitigate this critical risk. Rotate all exposed authentication tokens. Implement robust security measures, including restricting external access, deploying Web Application Firewalls (WAFs) to block malicious URLs, and enforcing strict egress filtering. Consider running OpenClaw in a sandboxed environment to limit the potential impact of exploitation.