CVE-2026-32913

CRITICAL 9.3

OpenClaw < 2026.3.7 - Custom Authorization Header Leakage via Cross-Origin Redirects

CVSS Score

9.3

EPSS Score

0.0%

EPSS Percentile

8th

OpenClaw before 2026.3.7 contains an improper header validation vulnerability in fetchWithSsrFGuard that forwards custom authorization headers across cross-origin redirects. Attackers can trigger redirects to different origins to intercept sensitive headers like X-Api-Key and Private-Token intended for the original destination.

CWE	CWE-522
Vendor	openclaw
Product	openclaw
Published	Mar 23, 2026
Last Updated	Mar 24, 2026

Stay Ahead of the Next One

Get instant alerts for openclaw openclaw

Be the first to know when new critical vulnerabilities affecting openclaw openclaw are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

Low

Availability

None

Affected Versions

OpenClaw / OpenClaw

0 < 2026.3.7

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/openclaw/openclaw/security/advisories/GHSA-6mgf-v5j7-45cr github.com: https://github.com/openclaw/openclaw/commit/46715371b0612a6f9114dffd1466941ac476cef5 vulncheck.com: https://vulncheck.com/advisories/openclaw-mar-custom-authorization-header-leakage-via-cross-origin-redirects

Credits

🔍 Elvin Latifli (@Rickidevs)