CVE-2026-27488
Received Received - Intake
SSRF Vulnerability in OpenClaw Cron Webhook Delivery

Publication date: 2026-02-21

Last updated on: 2026-02-23

Assigner: GitHub, Inc.

Description
OpenClaw is a personal AI assistant. In versions 2026.2.17 and below, Cron webhook delivery in src/gateway/server-cron.ts uses fetch() directly, so webhook targets can reach private/metadata/internal endpoints without SSRF policy checks. This issue was fixed in version 2026.2.19.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-21
Last Modified
2026-02-23
Generated
2026-06-16
AI Q&A
2026-02-21
EPSS Evaluated
2026-06-14
NVD
CVE-2026-27488
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
openclaw openclaw to 2026.2.17 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-918 The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-27488 is a vulnerability in the OpenClaw personal AI assistant affecting versions 2026.2.17 and below. The issue arises because the cron webhook delivery mechanism uses the fetch() function directly without enforcing Server-Side Request Forgery (SSRF) policy checks. This flaw allows webhook targets to access internal, private, or metadata endpoints that should normally be protected from external access.

The vulnerability was fixed in version 2026.2.18 by introducing SSRF protections that block outbound HTTP requests targeting private or internal IP addresses, preventing unauthorized internal network access.

Impact Analysis

This vulnerability can allow an attacker controlling a webhook target to make the OpenClaw system send requests to internal or private network endpoints that should be inaccessible. This can lead to unauthorized access to sensitive internal services or metadata endpoints, potentially exposing confidential information or enabling further attacks within the internal network.

Compliance Impact

I don't know

Detection Guidance

This vulnerability involves the cron webhook delivery in OpenClaw versions up to 2026.2.17 using fetch() directly without SSRF checks, allowing access to private/internal endpoints.

To detect this vulnerability on your system, you can check the version of the OpenClaw package installed. If it is version 2026.2.17 or below, it is vulnerable.

Additionally, you can monitor network traffic for webhook POST requests originating from the cron jobs targeting internal or private IP addresses, which should normally be blocked.

Suggested commands include:

  • Check OpenClaw version installed (example for npm package): `npm list openclaw` or `npm ls openclaw`
  • Monitor outgoing webhook requests from the server, for example using tcpdump or similar tools to detect requests to private IP ranges: `sudo tcpdump -i any dst net 10.0.0.0/8 or dst net 172.16.0.0/12 or dst net 192.168.0.0/16`
  • Review application logs for webhook delivery attempts to internal endpoints or errors related to webhook delivery.
Mitigation Strategies

The immediate mitigation step is to upgrade the OpenClaw package to version 2026.2.18 or later, where the vulnerability is fixed by introducing SSRF protections in the cron webhook delivery mechanism.

This fix replaces the direct fetch() call with a guarded fetch function that blocks requests to private or internal IP addresses, preventing unauthorized access.

If upgrading immediately is not possible, consider implementing network-level controls such as firewall rules to block outgoing HTTP requests from the OpenClaw cron jobs to private/internal IP ranges.

Also, review and monitor webhook delivery logs to detect and respond to any suspicious webhook requests targeting internal endpoints.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-27488. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart