Description

OpenClaw (aka clawdbot or Moltbot) before 2026.1.29 obtains a gatewayUrl value from a query string and automatically makes a WebSocket connection without prompting, sending a token value.

INFO

Published Date :

2026-02-01T22:34:17.590Z

Last Modified :

2026-02-03T15:32:57.600Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2026-25253 vulnerability.

Vendors Products
Openclaw
  • Openclaw
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-25253.

URL Resource
https://depthfirst.com/post/1-click-rce-to-steal-your-moltbot-data-and-keys cve-icon cve-icon cve-icon
https://ethiack.com/news/blog/one-click-rce-moltbot cve-icon cve-icon
https://github.com/openclaw/openclaw/security/advisories/GHSA-g8p2-7wf7-98mq cve-icon cve-icon
https://openclaw.ai/blog cve-icon cve-icon
https://x.com/0xacb/status/2016913750557651228 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact