OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link

Published: 6 days ago (February 2, 2026 at 11:28 AM EST)

1 min read

Source: The Hacker News

A high-severity security flaw has been disclosed in OpenClaw (formerly referred to as Clawdbot and Moltbot) that could allow remote code execution (RCE) through a crafted malicious link.
The issue, which is tracked as CVE‑2026‑25253 (CVSS score: 8.8), has been addressed in version 2026.1.29 released…

Back to Blog

MCP shipped without authentication. Clawdbot shows why that's a problem.

Model Context Protocol has a security problem that won't go away. When VentureBeat first reported on MCP's vulnerabilities last October, the data was already al...

Elon Musk Is Rolling xAI Into SpaceX—Creating the World’s Most Valuable Private Company

By fusing SpaceX and xAI—which acquired X last year—Elon Musk tightens his grip over technologies that shape national security, social media, and artificial int...

Partnering With Waymo

The post Partnering With Waymo appeared first on Sequoia Capital....

Waymo raises $16B to scale robotaxi fleet internationally

The round, led by Dragoneer Investment Group, DST Global, and Sequoia Capital, now values the autonomous vehicle company at $126 billion....

Related posts

MCP shipped without authentication. Clawdbot shows why that's a problem.

Elon Musk Is Rolling xAI Into SpaceX—Creating the World’s Most Valuable Private Company

Partnering With Waymo

Waymo raises $16B to scale robotaxi fleet internationally