CVE-2026-28394

Description

### Summary The `web_fetch` tool could be used to crash the OpenClaw Gateway process (OOM / resource exhaustion) by fetching and attempting to parse attacker-controlled web pages with oversized response bodies or pathological HTML nesting. ### Affected Packages / Versions - Package: `openclaw` (npm) - Affected versions: `<= 2026.2.14` - Fixed versions: `>= 2026.2.15` ### Impact An attacker can social-engineer a user (or any automation that uses `web_fetch`) into fetching a malicious URL that returns extremely large or deeply nested HTML. The Gateway may exhaust memory or become unresponsive, causing a denial of service. ### Fix The Gateway now caps the downloaded response body size before any HTML parsing and adds additional guards to avoid running Readability/DOM parsing on pathological HTML. ### Fix Commit(s) - 166cf6a3e04c7df42bea70a7ad5ce2b9df46d147 ### Release Process Note This advisory is prepared for the next npm release. Once `[email protected]` is published, publish this advisory without further edits. Thanks @xuemian168 for reporting.

How to fix CVE-2026-28394

To remediate CVE-2026-28394, upgrade the affected package to a fixed version below.

• —upgrade to 2026.2.15 or later

Is CVE-2026-28394 being exploited?

Low — EPSS is 0.2%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 2026.2.15

CVSS scores

References (4)

• PATCHgithub.com/openclaw/openclaw
• WEBgithub.com/openclaw/openclaw/commit/166cf6a3e04c7df42bea70a7ad5ce2b9df46d147
• WEBgithub.com/openclaw/openclaw/releases/tag/v2026.2.15
• WEBgithub.com/openclaw/openclaw/security/advisories/GHSA-p536-vvpp-9mc8