PANews reported on March 2nd that the GoPlus Chinese community issued a warning about a high-risk vulnerability in the OpenClaw Gateway. Users are urged to immediatelyPANews reported on March 2nd that the GoPlus Chinese community issued a warning about a high-risk vulnerability in the OpenClaw Gateway. Users are urged to immediately
Warning: OpenClaw Gateway has a high-risk vulnerability. Please upgrade to version 2026.2.25 or later immediately.
PANews reported on March 2nd that the GoPlus Chinese community issued a warning about a high-risk vulnerability in the OpenClaw Gateway. Users are urged to immediately upgrade to version 2026.2.25 or higher and audit and revoke any unnecessary credentials, API keys, and node permissions granted to Agent instances. The analysis states that OpenClaw operates through a WebSocket Gateway bound to the local host. This Gateway, as the core coordination layer for the Agent, is a crucial component of OpenClaw. This attack targets a weakness in the Gateway layer, requiring only one condition: the user visits a malicious website controlled by the hacker in their browser.
The complete attack chain is as follows:
- 1. The victim accessed a malicious website controlled by the attacker in their browser;
- 2. The JavaScript in the page initiates a WebSocket connection to the OpenClaw gateway on the local host;
- 3. Subsequently, the attack script attempts to brute-force the gateway password hundreds of times per second;
- 4. After successful cracking, the attack script silently registers as a trusted device;
- 5. The attacker gains administrator-level control over the Agent;
Market Opportunity
OpenClaw Price(OPENCLAW)
$0.0002699
$0.0002699$0.0002699
USD
OpenClaw (OPENCLAW) Live Price Chart
Disclaimer: The articles reposted on this site are sourced from public platforms and are provided for informational purposes only. They do not necessarily reflect the views of MEXC. All rights remain with the original authors. If you believe any content infringes on third-party rights, please contact crypto.news@mexc.com for removal. MEXC makes no guarantees regarding the accuracy, completeness, or timeliness of the content and is not responsible for any actions taken based on the information provided. The content does not constitute financial, legal, or other professional advice, nor should it be considered a recommendation or endorsement by MEXC.
You May Also Like
Over $9 billion flowed out of Bitcoin and Ethereum ETFs in four months
PANews reported on March 2nd that, according to CoinDesk, data shows that US-listed spot Bitcoin and Ethereum ETFs have experienced record outflows over the past
Share
PANews2026/03/02 14:00
Will XRP Price Increase In September 2025?
Ripple XRP is a cryptocurrency that primarily focuses on building a decentralised payments network to facilitate low-cost and cross-border transactions. It’s a native digital currency of the Ripple network, which works as a blockchain called the XRP Ledger (XRPL). It utilised a shared, distributed ledger to track account balances and transactions. What Do XRP Charts Reveal? […]
Share
Tronweekly2025/09/18 00:00
ArtGis Finance Partners with MetaXR to Expand its DeFi Offerings in the Metaverse
By using this collaboration, ArtGis utilizes MetaXR’s infrastructure to widen access to its assets and enable its customers to interact with the metaverse.
Share
Blockchainreporter2025/09/18 00:07