What is CVE-2026-41361?

An SSRF guard bypass in OpenClaw before 2026.3.28 that fails to block four IPv6 special-use address ranges, allowing attackers to reach internal services.

How serious is CVE-2026-41361?

CVSS 7.1 High. Attackers can craft URLs targeting internal or non-routable IPv6 addresses to bypass SSRF protections.

How do I fix CVE-2026-41361?

Upgrade OpenClaw to version 2026.3.28 or later.

What IPv6 ranges does CVE-2026-41361 miss?

Four IPv6 special-use ranges are unblocked in the SSRF guard, allowing access to internal network services.

← Back to dashboard

clawsmith.com/signal/cve-2026-41361-ssrf-ipv6-bypass-guard

⚠ IssueWide OpenLive

CVE-2026-41361: SSRF guard bypass via IPv6 special-use ranges in OpenClaw

OpenClaw before 2026.3.28 fails to block four IPv6 special-use ranges in its SSRF guard. Attackers can target internal services via crafted IPv6 URLs. CVSS 7.1.

Product Idea from this Signal

A CI/CD security gate that blocks OpenClaw deployments failing CVE, config, and network exposure checks

892 ▲

OpenClaw has accumulated 138+ CVEs in under 3 months, with 220,000+ instances exposed to the internet and 63% running without authentication. Kaspersky declared it unsafe for use. Existing tools (SecureClaw, Carapace, ClawSec) run audits after deployment, but nothing blocks a bad deployment from going live. This is a pre-deploy security gate that integrates into CI/CD pipelines, runs automated CVE version checks, config hardening validation, and network exposure scans, and fails the deploy if the instance doesn't meet a configurable security baseline.

CLICI-CDSECURITYDEVOPSOPEN-SOURCE

CompetitiveView Opportunity →