Description
OpenClaw versions prior to 2026.2.21 sandbox browser entrypoint launches x11vnc without authentication for noVNC observer sessions, allowing unauthenticated access to the VNC interface. Remote attackers on the host loopback interface can connect to the exposed noVNC port to observe or interact with the sandbox browser without credentials.
Published: 2026-03-21
Score: 8.5 High
EPSS: < 1% Very Low
KEV: No
Impact: Unauthenticated remote control of the sandbox browser via VNC
Action: Immediate patch
AI Analysis

Impact

This flaw lets an attacker reaching the host’s loopback interface start the sandbox browser’s noVNC observer without any authentication. By opening a VNC session, the attacker can view and potentially manipulate the browser environment, bypassing local access controls. The issue is an authentication bypass (CWE‑306).

Affected Systems

All OpenClaw public releases before version 2026.2.21 are impacted. The vulnerability exists in the OpenClaw sandbox browser application and is fixed in release 2026.2.21 and later.

Risk and Exploitability

The CVSS base score of 8.5 reflects high severity. Although the EPSS score is not published and the flaw is not listed in CISA’s KEV catalog, the local attack surface means any host running an unpatched OpenClaw instance is at risk of unauthorized interaction, making it essential to apply the patch quickly.

Generated by OpenCVE AI on March 21, 2026 at 06:55 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade OpenClaw to version 2026.2.21 or later.
  • Disable the noVNC observer feature or configure it to require authentication before allowing connections.
  • Restrict the VNC listening port to trusted hosts or block it entirely using firewall rules.
  • Monitor VNC logs for suspicious connections and review access controls.

Generated by OpenCVE AI on March 21, 2026 at 06:55 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-25gx-x37c-7pph OpenClaw's andbox browser noVNC observer lacked VNC authentication
History

Mon, 23 Mar 2026 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Sat, 21 Mar 2026 05:30:00 +0000

Type Values Removed Values Added
Description OpenClaw versions prior to 2026.2.21 sandbox browser entrypoint launches x11vnc without authentication for noVNC observer sessions, allowing unauthenticated access to the VNC interface. Remote attackers on the host loopback interface can connect to the exposed noVNC port to observe or interact with the sandbox browser without credentials.
Title OpenClaw < 2026.2.21 - Missing VNC Authentication in Sandbox Browser noVNC Observer
First Time appeared Openclaw
Openclaw openclaw
Weaknesses CWE-306
CPEs cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*
Vendors & Products Openclaw
Openclaw openclaw
References
Metrics cvssV3_1

{'score': 7.7, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N'}

cvssV4_0

{'score': 8.5, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Openclaw Openclaw
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-03-23T17:28:06.276Z

Reserved: 2026-03-10T19:52:06.167Z

Link: CVE-2026-32064

cve-icon Vulnrichment

Updated: 2026-03-23T17:28:02.814Z

cve-icon NVD

Status : Analyzed

Published: 2026-03-21T01:17:09.697

Modified: 2026-03-24T21:10:01.503

Link: CVE-2026-32064

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-03-25T14:44:10Z

Weaknesses