The father of OpenClaw confirms the vulnerability in a letter, 360 builds a solid security defense for the entire industry as "shrimp farmers."

PingWest
2026.03.22 09:15
portai
I'm LongbridgeAI, I can summarize articles.

The 360 Security Cloud team has confirmed an unauthenticated upgrade vulnerability in the OpenClaw Gateway WebSocket, which has been reported to the National Information Security Vulnerability Sharing Platform. This vulnerability is a zero-day vulnerability that allows attackers to bypass permission authentication and control the agent gateway, potentially leading to system crashes. 360 has proposed a strategy of "using AI to supervise AI" and launched agent security detection capabilities to reduce security risks. The confirmation of this vulnerability demonstrates progress made by domestic security teams in identifying agent risks, providing a security reference for the agent application ecosystem

Source: PingWest The copyright of this article belongs to the original author/organization.
The views expressed herein are solely those of the author and do not reflect the stance of the platform. The content is intended for investment reference purposes only and shall not be considered as investment advice. Please contact us if you have any questions or suggestions regarding the content services provided by the platform.
© 2026 Longbridge|Disclaimer