OpenClaw Credential Exposure Vulnerability via Cross-Origin Redirects in Media Download
Vulnerability
A credential exposure vulnerability has been identified in OpenClaw versions prior to 2026.3.31. This vulnerability arises in the media download functionality, where Authorization headers are forwarded across cross-origin redirects. Attackers can exploit this by creating malicious cross-origin redirect chains to intercept sensitive authorization credentials meant for legitimate requests.
Impact
Exploitation of this vulnerability leads to unauthorized interception of authorization credentials, creating a risk of credential leakage.
Reproduction
To reproduce this vulnerability, save a media file from a cross-origin source while including an Authorization header. The request will forward the Authorization header across cross-origin redirects, potentially exposing the credential to an interceptor.
Remediation
Users can update to OpenClaw version 2026.3.31 or later, where this vulnerability has been patched.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.