CVE-2026-26322
CVE-2026-26322 affects the OpenClaw AI assistant. Prior to version 2026.2.14, the Gateway tool allowed a tool-supplied gatewayUrl to pass without proper restriction, enabling outbound WebSocket connections from the OpenClaw host to user-specified targets when a caller can invoke tools with gatewa...