--- title: "AI TRENDS | OpenClaw Gateway WebSocket Vulnerability Confirmed by Founder" type: "News" locale: "en" url: "https://longbridge.com/en/news/280047739.md" description: "A critical zero-day vulnerability in the OpenClaw Gateway WebSocket has been confirmed by founder Peter. The 360 Security Cloud team discovered an unauthenticated upgrade flaw, which allows attackers to bypass permission authentication and potentially gain control over the gateway. This high-risk issue has been reported to the National Information Security Vulnerability Sharing Platform (CNVD) to mitigate risks across the network, as it could lead to resource exhaustion or system crashes." datetime: "2026-03-22T09:13:57.000Z" locales: - [zh-CN](https://longbridge.com/zh-CN/news/280047739.md) - [en](https://longbridge.com/en/news/280047739.md) - [zh-HK](https://longbridge.com/zh-HK/news/280047739.md) --- # AI TRENDS | OpenClaw Gateway WebSocket Vulnerability Confirmed by Founder A critical vulnerability in the OpenClaw Gateway WebSocket has been confirmed by its founder, Peter, according to PANews. The 360 Security Cloud team received an official email from Peter, acknowledging the exclusive discovery of the unauthenticated upgrade flaw by the 360 team. The high-risk vulnerability has been reported to the National Information Security Vulnerability Sharing Platform (CNVD) by 360, aiming to swiftly eliminate the risk across the network. This WebSocket unauthenticated upgrade flaw is classified as a zero-day (0Day) vulnerability, which attackers can exploit to silently bypass permission authentication via WebSocket, potentially gaining control over the intelligent gateway. This could lead to resource exhaustion or a complete system crash. ### Related Stocks - [601360.CN](https://longbridge.com/en/quote/601360.CN.md) ## Related News & Research - [AI face is taking over — and driving plastic surgeons crazy](https://longbridge.com/en/news/286641783.md) - [Jack Antonoff tells people who are making AI art to 'drive right off that cliff'](https://longbridge.com/en/news/286592426.md) - [06:07 ETStandardC Launches AI Platform for Financial Institutions, Where Customer PII Is Never Shared With AI Models (Patent Pending)](https://longbridge.com/en/news/286892045.md) - [Axios reports that Donald Trump’s AI executive order aims to give the government early access to cutting-edge AI models.](https://longbridge.com/en/news/286984559.md) - [11:30 ETDageno Launches Issues Panel and High-volume Prompt Miner to Help Growing Brands Turn AI Search Signals Into Growth Tasks](https://longbridge.com/en/news/286939643.md)