CVE-2026-43527 PUBLISHED

OpenClaw before 2026.4.14 contains a server-side request forgery vulnerability in browser SSRF policy that allows private-network navigation by default. Attackers can exploit this misconfiguration to access internal services or metadata endpoints through browser-driven requests.

• dhyabi2 reporter

• GitHub Security Advisory (GHSA-53vx-pmqw-863c)
• Patch Commit (1)
• Patch Commit (2)
• Patch Commit (3)
• Patch Commit (4)
• VulnCheck Advisory: OpenClaw < 2026.4.14 - Server-Side Request Forgery via Private Network Navigation

• CWE-918 Server-Side Request Forgery (SSRF) CWE
• CWE-1188 Initialization of a Resource with an Insecure Default CWE