CRITICALCVE-2026-43575Published 2026-05-06Modified 2026-05-07CNA VulnCheck

CVE-2026-43575: OpenClaw 2026.2.21 < 2026.4.10 - Authentication Bypass in Sandbox noVNC Helper Route

OpenClaw versions 2026.2.21 before 2026.4.10 contain an authentication bypass vulnerability in the sandbox noVNC helper route that exposes interactive browser session credentials. Attackers can access the noVNC helper route without bridge authentication to gain unauthorized access to the interactive browser session.

CVSS v4.0: 9.2
Severity: CRITICAL
Fixed in: 2026.4.10
Affected Products: 1

Fix available

2026.4.10

Patch commits

Patch Commit

Affected packages

OpenClaw / OpenClaw
< 2026.4.10 (from 2026.2.21)
Fixed in 2026.4.10

CVSS Vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

References

GitHub Security Advisory (GHSA-92jp-89mq-4374)
Patch Commit
VulnCheck Advisory: OpenClaw 2026.2.21 < 2026.4.10 - Authentication Bypass in Sandbox noVNC Helper Route

Metrics

Fix available