OpenClaw Improper Network Binding Vulnerability Exposing Chrome DevTools Protocol
Vulnerability
A vulnerability exists in OpenClaw versions prior to 2026.4.10, where the sandbox browser's Chrome DevTools Protocol (CDP) relay is improperly bound to 0.0.0.0. This misconfiguration allows unauthorized access to the DevTools protocol, bypassing local sandbox restrictions. The issue arises from an overly broad binding that exposes the CDP relay to peer containers.
Impact
The vulnerability could lead to unauthorized access to the Chrome DevTools Protocol from peer containers, allowing them to interact with the DevTools interface of the affected application.
Reproduction
The vulnerability can be reproduced by deploying OpenClaw in a Docker environment with the default network settings. When the sandbox browser is enabled, the CDP relay will bind to 0.0.0.0, exposing the DevTools Protocol to all containers on the same network. This can be verified by checking the accessibility of the DevTools Protocol from a peer container.
Remediation
Users should upgrade to OpenClaw version 2026.4.10 or later. The latest version available is 2026.4.14, which includes the necessary fix.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.