How many CVEs did OpenClaw receive in March 2026?

Between March 18-21, 2026, nine CVEs were disclosed for OpenClaw in four days. The jgamblin/OpenClawCVEs tracker lists 156+ total security advisories to date, with 128 still awaiting CVE assignment.

What is CVE-2026-32896 in OpenClaw?

CVE-2026-32896 is a critical authentication bypass vulnerability (CVSS 9.9) in OpenClaw where the WebSocket gateway allows authenticated users to self-declare elevated scopes including operator.admin during the connection handshake. No special privileges are required to exploit it.

Is it safe to run OpenClaw in production in March 2026?

Running OpenClaw in production requires actively tracking upstream security releases and applying patches promptly. As of March 2026, Belgium's Centre for Cybersecurity issued a Patch Immediately advisory. Multiple CVEs were rated high to critical severity.

What OpenClaw CVEs were disclosed March 18-21 2026?

Nine CVEs were disclosed over four days. The most critical scored 9.9 CVSS and enabled admin privilege escalation via WebSocket. Others included command approval bypass via shell line-continuation characters, session sandbox escapes (CVE-2026-32915, CVE-2026-32918), and authorization bypasses in config and debug handlers (CVE-2026-32914).

How can I track OpenClaw security advisories?

The jgamblin/OpenClawCVEs GitHub repository (github.com/jgamblin/OpenClawCVEs) tracks all OpenClaw CVEs and security advisories. As of March 2026, it lists 156+ total advisories. Also monitor the GitHub security overview at github.com/openclaw/openclaw/security.

← Back to dashboard

clawsmith.com/signal/openclaw-nine-cves-four-days-march-2026

⚠ IssueWide OpenLive

OpenClaw Nine CVEs in Four Days: 9.9 CVSS Admin Bypass via WebSocket Handshake

Between March 18-21, 2026, nine CVEs were disclosed for OpenClaw. The most critical (CVSS 9.9) let any authenticated user self-declare admin via WebSocket scope handshake — no special privileges required. Six more were high severity, including command approval bypasses and session sandbox escapes. The jgamblin/OpenClawCVEs tracker now lists 156+ total advisories, 128 still awaiting CVE assignment. Belgium CCB issued a Patch Immediately advisory.

Product Idea from this Signal

A network firewall that blocks WebSocket hijack attacks on local OpenClaw agents before malicious sites connect

900 ▲

Any website can silently connect to your local OpenClaw agent via WebSocket brute-force and steal data, execute commands, or exfiltrate credentials. The ClawJacked vulnerability (85K+ virality, CVSS 8.8-9.9) affects every default OpenClaw install running on localhost. Existing patches only cover specific CVEs while new WebSocket attack vectors keep appearing weekly. This tool runs as a local proxy between the browser and the OpenClaw gateway, validating every WebSocket connection against an allowlist of trusted origins, blocking unauthorized handshakes, and logging all connection attempts for forensic review.

SECURITYCLIDEVTOOLOPEN-SOURCE

CompetitiveView Opportunity →