Vulnerability  ·  2026-07-19

OpenClaw Forwards Authorization Headers During MCP SSE Redirects

VulnerabilityMedium impactGlobalCVE-2026-62208
NVD published a medium-severity (CVSS 6.5) credential-leak/authorization-scope issue where OpenClaw's MCP SSE transport forwards sensitive Authorization headers to redirect targets.
Forwarding auth headers on redirect is a classic SSRF/credential-leak pattern; in an MCP context this could let a malicious or compromised MCP server endpoint capture the operator's authorization token via a redirect, impacting confidentiality depending on the operator's configuration.
When the affected feature is enabled and reachable, OpenClaw could forward Authorization headers during MCP SSE (Server-Sent Events) redirects, allowing a lower-trust caller or configured input path to execute or persist actions beyond the caller's intended authorization scope.
OpenClaw before 2026.6.5
Upgrade to OpenClaw 2026.6.5 or later per GHSA-9c3v-684m-579c; avoid enabling MCP SSE redirect-following where not required.
GitHub Security Advisory GHSA-9c3v-684m-579c
See this in the live feed Explore related AI security and governance findings — updated every morning.
Open the feed →