๐Ÿ•ท๏ธStalecollected in 13h

OpenClaw 2026.3.11: WebSocket Security Fix

OpenClaw 2026.3.11: WebSocket Security Fix
PostLinkedIn
๐Ÿ•ท๏ธRead original on OpenClaw (GitHub Releases)

๐Ÿ’กPatches WebSocket vuln + adds Gemini multimodal memory for secure AI apps

โšก 30-Second TL;DR

What Changed

Fixed cross-site WebSocket hijacking in trusted-proxy mode (GHSA-5wcw-8jjv-m286)

Why It Matters

Boosts security for production deployments and enhances developer productivity with better onboarding and memory tools, potentially accelerating AI app builds.

What To Do Next

Upgrade OpenClaw to 2026.3.11 and test Gemini multimodal memory indexing on your extraPaths.

Who should care:Developers & AI Engineers

๐Ÿง  Deep Insight

Web-grounded analysis with 9 cited sources.

๐Ÿ”‘ Enhanced Key Takeaways

  • โ€ขThe patched WebSocket hijacking vulnerability, dubbed ClawJacked, was disclosed by Oasis Security and allows any malicious website to brute-force the localhost gateway password due to absent rate-limiting for local connections[1][7][8].
  • โ€ขOpenClaw has a history of WebSocket-related flaws including CVE-2026-25253 (auth token theft via malicious gatewayUrl links leading to RCE, CVSS 8.8, fixed before 2026.1.29) and CVE-2026-28472 (skipping device identity checks in handshake, fixed before 2026.2.2)[2][3][6].
  • โ€ขAdditional recent patches addressed CVE-2026-25593 (OS command injection via unsanitized cliPath in config.apply, exploitable locally) and a log poisoning issue enabling prompt injection (fixed in 2026.2.13)[5][7].

๐Ÿ”ฎ Future ImplicationsAI analysis grounded in cited sources

OpenClaw users remain at risk from unpatched prior CVEs if not updated sequentially
Multiple WebSocket flaws like CVE-2026-25253 and CVE-2026-28472 affect versions before mid-2026.2.x, requiring cumulative updates beyond 2026.3.11[2][6].
Increased scrutiny on local AI gateways will drive stricter browser-WebSocket isolation standards
ClawJacked exploits browser localhost WebSocket access, a pattern seen across local AI tools, prompting broader industry mitigations[1][8].

โณ Timeline

2026-01
CVE-2026-25253 auth token theft via WebSocket RCE disclosed, fixed before v2026.1.29
2026-02
CVE-2026-28472 device identity bypass in handshake fixed before v2026.2.2
2026-02
Log poisoning vulnerability patched in v2026.2.13
2026-02
ClawJacked (GHSA-5wcw-8jjv-m286) localhost hijacking disclosed by Oasis Security
2026-03
v2026.3.11 released with ClawJacked fix via origin validation and other enhancements
๐Ÿ“ฐ

Weekly AI Recap

Read this week's curated digest of top AI events โ†’

๐Ÿ‘‰Related Updates

AI-curated news aggregator. All content rights belong to original publishers.
Original source: OpenClaw (GitHub Releases) โ†—