Primary

Context

OpenClaw Cron Webhook SSRF Vulnerability

Vulnerability

A server-side request forgery (SSRF) vulnerability has been identified in OpenClaw, a personal AI assistant, affecting versions through 2026.2.17. The issue arises in the cron webhook delivery process, where fetch() is used without proper safeguards. This allows webhook targets to access private, metadata, or internal endpoints, bypassing necessary SSRF policy checks. The vulnerability has been patched in version 2026.2.19.

Impact

Exploitation of this vulnerability could lead to unauthorized access to private or internal endpoints, creating a potential vector for further attacks or data exposure.

Reproduction

The vulnerability can be reproduced by configuring a cron job that sends a webhook to a private or internal URL. When the webhook is delivered, the fetch() call will bypass SSRF protections, allowing access to the targeted endpoint.

Remediation

Users can upgrade to OpenClaw version 2026.2.19 to address this vulnerability.

Added: Feb 21, 2026, 10:30 AM

Updated: Feb 21, 2026, 10:30 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

3.3

threat

4.8

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

3.3

threat

4.8

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OpenClaw Cron Webhook SSRF Vulnerability

Vulnerability

Impact

Reproduction

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating