๐Ÿ•ท๏ธStalecollected in 7m

OpenClaw Beta Fixes WebSocket Hijacking

OpenClaw Beta Fixes WebSocket Hijacking
PostLinkedIn
๐Ÿ•ท๏ธRead original on OpenClaw (GitHub Releases)

๐Ÿ’กCritical security patch + Ollama onboarding & Gemini multimodal memory in OpenClaw beta.

โšก 30-Second TL;DR

What Changed

Gateway/WebSocket: Enforces origin validation to block cross-site hijacking (GHSA-5wcw-8jjv-m286).

Why It Matters

This beta release bolsters security for deployed OpenClaw gateways while streamlining developer workflows with better onboarding and multimodal capabilities, potentially reducing setup friction for AI applications.

What To Do Next

Upgrade your OpenClaw gateway to 2026.3.11-beta.1 immediately for WebSocket origin validation.

Who should care:Developers & AI Engineers

๐Ÿง  Deep Insight

Web-grounded analysis with 9 cited sources.

๐Ÿ”‘ Enhanced Key Takeaways

  • โ€ขThe patched vulnerability, codenamed ClawJacked (GHSA-5wcw-8jjv-m286), enabled attackers to brute-force gateway passwords from malicious websites via localhost WebSocket connections lacking rate-limiting.[1][7][8]
  • โ€ขOpenClaw faced multiple prior WebSocket flaws including CVE-2026-25253 (auth token theft via malicious gatewayUrl links, CVSS 8.8, fixed in 2026.1.29) and CVE-2026-28472 (skipping device identity checks, fixed in 2026.2.2).[2][3][6]
  • โ€ขAdditional patches addressed log poisoning (fixed in 2026.2.13) allowing prompt injection via WebSocket to port 18789, and 71 malicious ClawHub skills distributing malware and scams.[7]

๐Ÿ”ฎ Future ImplicationsAI analysis grounded in cited sources

OpenClaw adoption may slow temporarily due to repeated high-severity WebSocket flaws
Multiple CVEs with CVSS 8.8 and full RCE chains reported in early 2026 highlight ongoing security challenges in local AI gateways.
Origin validation sets new standard for local AI WebSocket security
Beta fix enforces browser origin checks, directly countering ClawJacked-style localhost hijacks prevalent in prior versions.

โณ Timeline

2026-01
CVE-2026-25253 disclosed: WebSocket auth token theft enabling RCE, affects versions prior to 2026.1.29
2026-02
CVE-2026-28472 published: Faulty device identity checks in WebSocket handshake, fixed in 2026.2.2
2026-02
Log poisoning vulnerability patched in 2026.2.13 alongside ClawJacked early fixes
2026-02
ClawJacked (GHSA-5wcw-8jjv-m286) publicly disclosed by Oasis Security
2026-03
2026.3.11-beta.1 released: Enforces origin validation to fully patch ClawJacked
๐Ÿ“ฐ

Weekly AI Recap

Read this week's curated digest of top AI events โ†’

๐Ÿ‘‰Related Updates

AI-curated news aggregator. All content rights belong to original publishers.
Original source: OpenClaw (GitHub Releases) โ†—