CVE-2026-28467HIGH 8.6EPSS p31.3%

CVE-2026-28467CVE-2026-28467

Description

OpenClaw versions prior to 2026.2.2 contain a server-side request forgery vulnerability in attachment and media URL hydration that allows remote attackers to fetch arbitrary HTTP(S) URLs. Attackers who can influence media URLs through model-controlled sendAttachment or auto-reply mechanisms can trigger SSRF to internal resources and exfiltrate fetched response bytes as outbound attachments.

Scoring

CVSS 3.18.6 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
EPSS0.40% probability of exploitation · percentile 31.3% · 2026-06-19T12:03:05Z
Published2026-03-05
Last modified2026-03-09

Underlying weaknesses· 1

CWE-918

References

  1. https://github.com/openclaw/openclaw/commit/81c68f582d4a9a20d9cca9f367d2da9edc5a65ae
  2. https://github.com/openclaw/openclaw/commit/9bd64c8a1f91dda602afc1d5246a2ff2be164647
  3. https://github.com/openclaw/openclaw/security/advisories/GHSA-wfp2-v9c7-fh79
  4. https://www.vulncheck.com/advisories/openclaw-ssrf-via-attachment-media-url-hydration

1

TypeTargetConfidenceTier
WeaknessServer-Side Request Forgery (SSRF)cwe-9180%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-28451
CVE
CVE-2026-43526
CVE
CVE-2026-44116
CVE
CVE-2026-41914
CVE
CVE-2026-34504
CVE
CVE-2026-42439
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.