What is CVE-2026-45001?

CVE-2026-45001 is a guard bypass vulnerability (CVSS 6.0) in OpenClaw gateway config.patch and config.apply endpoints affecting versions before 2026.4.20.

How is CVE-2026-45001 exploited?

A prompt-injected model with access to the owner-only gateway tool can persist unauthorized changes to protected operator settings.

What OpenClaw version fixes CVE-2026-45001?

The fix is available in OpenClaw version 2026.4.20 and later.

What CWE is CVE-2026-45001?

CVE-2026-45001 is classified as CWE-862 (Missing Authorization).

← Back to dashboard

clawsmith.com/signal/cve-2026-45001-gateway-config-mutation-guard-bypass

⚠ IssueWide OpenLive

CVE-2026-45001: Gateway Config Mutation Guard Bypass via Agent Tool Access

Q: What settings can CVE-2026-45001 modify?

It can modify sandbox policy, plugin enablement, gateway auth/TLS, hook routing, MCP server configuration, SSRF policy, and filesystem hardening.

Guard bypass in agent-facing gateway config.patch and config.apply endpoints fails to protect operator-trusted settings including sandbox policy, plugin enablement, gateway auth/TLS, hook routing, MCP server configuration, SSRF policy, and filesystem hardening. CVSS 6.0.

Product Idea from this Signal

A reverse proxy that locks OpenClaw gateway configuration against model-driven mutation by enforcing an allowlist of immutable protected settings

8 ▲

OpenClaw gateway config.patch and config.apply endpoints have been exploited through denylist bypass (CVE-2026-45006, CVE-2026-45001, CVE-2026-45004). Compromised models persist malicious config changes to sandbox policy, auth/TLS, and SSRF rules that survive restart. This tool flips the model from denylist to allowlist, intercepting all config mutations at the network layer.

SECURITYREVERSE-PROXYOPEN-SOURCEDEVTOOL

CompetitiveView Opportunity →