CVE-2026-28451
SSRF Vulnerability in OpenClaw Feishu Extension Allows Internal Access
Publication date: 2026-03-05
Last updated on: 2026-03-11
Assigner: VulnCheck
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| openclaw | openclaw | to 2026.2.14 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-918 | The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in OpenClaw versions prior to 2026.2.14 and involves server-side request forgery (SSRF) in the Feishu extension. Attackers can exploit the sendMediaFeishu function and markdown image processing to make the server fetch URLs controlled by the attacker without proper SSRF protections.
By manipulating tool calls directly or through prompt injection, attackers can trigger requests to internal services and then re-upload the responses as Feishu media.
How can this vulnerability impact me? :
This vulnerability can allow attackers to make unauthorized requests from the vulnerable server to internal services that are otherwise inaccessible externally.
Such unauthorized requests can lead to information disclosure or manipulation of internal resources by re-uploading the fetched data as Feishu media.
The CVSS scores indicate a moderate severity with potential impact on integrity but no direct impact on confidentiality or availability.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
I don't know