Request Body Replay Vulnerability in OpenClaw by OpenClaw Team
CVE-2026-40037

7.1HIGH

Key Information:

Vendor: Openclaw
Status: Openclaw
Vendor: CVE Published:; 8 April 2026

What is CVE-2026-40037?

Prior to the 2026.4.8 release, OpenClaw suffered from a significant request body replay vulnerability in its function fetchWithSsrFGuard. This flaw allows malicious actors to exploit cross-origin redirects, which can lead to the unauthorized resending of potentially sensitive request data and headers to unintended origins. By leveraging this vulnerability, attackers can exfiltrate critical information without detection, posing a serious risk to user privacy and data integrity.

Affected Version(s)

OpenClaw 0 < 2026.3.31

OpenClaw 2026.4.8

References

https://github.com/openclaw/openclaw/security/advisories/...

third-party-advisory

https://github.com/openclaw/openclaw/commit/d7c3210cd6f5f...

patch

https://www.vulncheck.com/advisories/openclaw-unsafe-requ...

third-party-advisory

CVSS V4

Score:

7.1

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 8, 2026
Vulnerability Reserved
Apr 8, 2026

Credit

RaaX (@BG0ECV)

CVE-2026-40037 Data

JSON

Openclaw

What is CVE-2026-40037?

Affected Version(s)

References

CVSS V4

Timeline

Credit