OpenClaw disclosed two high-severity server-side request forgery vulnerabilities affecting versions prior to 2026.3.1 and 2026.3.28. CVE-2026-32902 impacts web_search citation redirect resolution, where attacker-influenced redirect targets can cause the OpenClaw gateway host to send requests to private-network destinations. The issue is tracked as CWE-918 and was assigned a CVSS v3.1 vector of AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L, indicating remote exploitation without privileges or user interaction.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
3 events from the most recent confirmed update back to the earliest known activity.
CVE-2026-34504 was disclosed for a server-side request forgery vulnerability affecting OpenClaw versions before 2026.3.28. On the disclosure date, VulnCheck records show the CVE was first received with an initial CVSS score and then updated the same day to a higher-impact CVSS vector with changed scope.
An OpenClaw code change referenced by the disclosure addressed an SSRF issue in the fal provider's image download handling, affecting versions before 2026.3.28. The flaw could allow a malicious or compromised fal relay to fetch internal URLs and expose internal service metadata through the image pipeline.
A new CVE, CVE-2026-32902, was recorded for a server-side request forgery vulnerability affecting OpenClaw versions before 2026.3.1. The flaw in web_search citation redirect resolution could let attackers induce the OpenClaw gateway host to send requests to private-network destinations.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
2 references tracked. Mallory keeps watching after this page renders.
cvefeed.io
Open sourcecvefeed.io
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.