Vulnerability Description
OpenClaw versions prior to 2026.2.21 sandbox browser entrypoint launches x11vnc without authentication for noVNC observer sessions, allowing unauthenticated access to the VNC interface. Remote attackers on the host loopback interface can connect to the exposed noVNC port to observe or interact with the sandbox browser without credentials.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Openclaw | Openclaw | < 2026.2.21 |
Related Weaknesses (CWE)
References
- https://github.com/openclaw/openclaw/commit/621d8e1312482f122f18c43c72c67211b141Patch
- https://github.com/openclaw/openclaw/commit/8c1518f0f3e0533593cd2dec3a46c9b74675Patch
- https://github.com/openclaw/openclaw/security/advisories/GHSA-25gx-x37c-7pphMitigationVendor Advisory
- https://www.vulncheck.com/advisories/openclaw-missing-vnc-authentication-in-sandThird Party Advisory
FAQ
What is CVE-2026-32064?
CVE-2026-32064 is a vulnerability with a CVSS score of 7.7 (HIGH). OpenClaw versions prior to 2026.2.21 sandbox browser entrypoint launches x11vnc without authentication for noVNC observer sessions, allowing unauthenticated access to the VNC interface. Remote attacke...
How severe is CVE-2026-32064?
CVE-2026-32064 has been rated HIGH with a CVSS base score of 7.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-32064?
Check the references section above for vendor advisories and patch information. Affected products include: Openclaw Openclaw.