CVE-2026-28476
📋 TL;DR
OpenClaw versions before 2026.2.14 contain a server-side request forgery vulnerability in the Tlon Urbit extension. Attackers who can influence the configured Urbit URL can make the gateway send HTTP requests to arbitrary internal or external systems. This affects OpenClaw installations with the optional Tlon Urbit extension enabled.
💻 Affected Systems
- OpenClaw
⚠️ Manual Verification Required
This CVE does not have specific version information in our database, so automatic vulnerability detection cannot determine if your system is affected.
Why? The CVE database entry doesn't specify which versions are vulnerable (no version ranges provided by the vendor/NVD).
🔒 Custom verification scripts are available for registered users. Sign up free to download automated test scripts.
- Review the CVE details at NVD
- Check vendor security advisories for your specific version
- Test if the vulnerability is exploitable in your environment
- Consider updating to the latest version as a precaution
⚠️ Risk & Real-World Impact
Worst Case
Attackers could access internal services, exfiltrate sensitive data, or pivot to other systems by making the vulnerable server proxy requests to internal infrastructure.
Likely Case
Information disclosure from internal services, potential credential theft if internal authentication endpoints are accessed, or scanning of internal network segments.
If Mitigated
Limited to external service scanning if proper network segmentation and egress filtering are in place.
🎯 Exploit Status
Exploitation requires ability to influence the configured Urbit URL, which typically requires some level of access or configuration control.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: 2026.2.14
Vendor Advisory: https://github.com/openclaw/openclaw/security/advisories/GHSA-pg2v-8xwh-qhcc
Restart Required: Yes
Instructions:
1. Update OpenClaw to version 2026.2.14 or later. 2. Restart the OpenClaw service. 3. Verify the update was successful by checking the version.
🔧 Temporary Workarounds
Disable Tlon Urbit Extension
allDisable the vulnerable extension if not required for functionality.
# Edit OpenClaw configuration to disable Tlon Urbit extension
# Set 'enable_urbit_extension = false' in config file
Restrict URL Configuration
allLimit who can configure the Urbit URL through access controls.
# Implement role-based access control for configuration changes
# Restrict configuration interface to trusted administrators only
🧯 If You Can't Patch
- Implement strict network egress filtering to limit outbound HTTP requests from the OpenClaw server.
- Monitor and audit all configuration changes to the Urbit URL setting for suspicious activity.
🔍 How to Verify
Check if Vulnerable:
Check if OpenClaw version is below 2026.2.14 and if the Tlon Urbit extension is enabled in configuration.Check Version:
openclaw --versionVerify Fix Applied:
Confirm OpenClaw version is 2026.2.14 or higher and verify the fix commit bfa7d21e997baa8e3437657d59b1e296815cc1b1 is present.📡 Detection & Monitoring
Log Indicators:
- Unusual outbound HTTP requests from OpenClaw process to internal IP ranges
- Configuration changes to Urbit URL setting
Network Indicators:
- HTTP requests from OpenClaw server to unexpected internal destinations
- Traffic patterns showing the server acting as a proxy
SIEM Query:
source="openclaw.log" AND ("urbit_url_change" OR "outbound_request" AND dest_ip=10.0.0.0/8 OR 172.16.0.0/12 OR 192.168.0.0/16)