CVE-2026-62197 in OpenClaw
Summary
by MITRE • 07/14/2026
OpenClaw before 2026.6.6 contains a policy bypass vulnerability in browser CDP discovery that accepts blocked WebSocket URLs. Attackers with lower-trust access can reach network destinations that should have been blocked by OpenClaw policy when the affected feature is enabled.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Analysis
by VulDB Data Team • 07/14/2026
The OpenClaw vulnerability represents a critical policy enforcement failure within the browser's CDP discovery mechanism that enables attackers to bypass security restrictions through manipulated WebSocket URL handling. This issue affects versions prior to 2026.6.6 and specifically targets the component responsible for discovering and managing WebSocket connections within the browser environment. The flaw exists in how the system processes and validates WebSocket URLs during the discovery phase, allowing unauthorized access to network resources that should be restricted by policy controls.
The technical implementation of this vulnerability stems from insufficient validation of WebSocket URL parameters during the CDP discovery process. When the affected feature is enabled, the system accepts WebSocket URLs regardless of their compliance with established security policies, creating a pathway for attackers to establish connections to blocked network destinations. This represents a fundamental breakdown in the principle of least privilege where access controls fail to properly enforce restrictions on network communication channels. The vulnerability manifests as a policy bypass rather than a direct exploitation vector, making it particularly insidious since it operates within legitimate system functionality while circumventing established security boundaries.
Operational impact of this vulnerability extends beyond simple unauthorized network access to encompass potential data exfiltration and lateral movement capabilities for threat actors. Attackers with lower-trust access levels can leverage this weakness to reach internal network resources that should remain protected from their current privilege level, effectively escalating their operational scope within the affected environment. The implications are particularly severe in enterprise environments where OpenClaw serves as a security boundary component, as it undermines the integrity of network segmentation and access control policies. Organizations may experience unauthorized data transfers, reconnaissance activities, or even full compromise of internal systems through this bypass mechanism.
Security mitigations for this vulnerability require immediate patching to version 2026.6.6 or later where the policy enforcement has been corrected. System administrators should conduct thorough network monitoring to detect any anomalous WebSocket traffic patterns that might indicate exploitation attempts. Additional defensive measures include implementing stricter network access controls, deploying Web Application Firewalls with enhanced WebSocket inspection capabilities, and conducting comprehensive security assessments of all browser-based discovery mechanisms. Organizations should also review their existing security policies to ensure proper enforcement of WebSocket URL validation and consider implementing network segmentation strategies that limit the impact of such bypasses. This vulnerability aligns with CWE-284 (Improper Access Control) and may map to ATT&CK techniques involving privilege escalation and lateral movement through network reconnaissance.