CVE-2026-42439HIGH 8.5EPSS p15.2%

CVE-2026-42439CVE-2026-42439

Description

OpenClaw before 2026.4.10 contains a server-side request forgery policy bypass vulnerability in the browser tabs action select and close routes. Attackers can bypass configured browser SSRF policy protections by exploiting the /tabs/action endpoint to perform unauthorized tab navigation operations.

Scoring

CVSS 3.18.5 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N
EPSS0.24% probability of exploitation · percentile 15.2% · 2026-06-19T12:03:05Z
Published2026-05-05
Last modified2026-05-07

Underlying weaknesses· 2

CWE-862CWE-918

References

  1. https://github.com/openclaw/openclaw/commit/48c0347921b7e9438af0312968fc360ca88023f3
  2. https://github.com/openclaw/openclaw/security/advisories/GHSA-rj2p-j66c-mgqh
  3. https://www.vulncheck.com/advisories/openclaw-ssrf-policy-bypass-in-browser-tabs-action-routes

2

TypeTargetConfidenceTier
WeaknessMissing Authorizationcwe-8620%live
WeaknessServer-Side Request Forgery (SSRF)cwe-9180%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-35673
CVE
CVE-2026-42431
CVE
CVE-2026-28451
CVE
CVE-2026-41353
CVE
CVE-2026-28467
CVE
CVE-2026-35652
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.