{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata. Fed continuously.","feed_url":"https://feed.craftedsignal.io/tags/network-policy-bypass/feed.json","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cpes":[],"_cs_cves":[{"cvss":7.7,"id":"CVE-2026-62201"}],"_cs_exploited":false,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["OpenClaw (\u003c 2026.6.6)"],"_cs_severities":["high"],"_cs_tags":["vulnerability","ssrf","network-policy-bypass","openclaw"],"_cs_type":"advisory","_cs_vendors":["OpenClaw"],"content_html":"\u003cp\u003eOpenClaw versions before 2026.6.6 are affected by a high-severity network policy bypass vulnerability, identified as CVE-2026-62201, with a CVSS v3.1 base score of 7.7. This flaw resides in the sandbox exec-server component, which is designed to process HTTP requests. However, due to this vulnerability, lower-trust callers or attackers can manipulate the exec-server to reach internal network destinations that should be restricted by OpenClaw's configured security policies. This effectively transforms the exec-server into an unauthorized proxy, enabling server-side request forgery (SSRF) and allowing attackers to access sensitive internal resources or conduct reconnaissance within the network. This vulnerability enables bypass of critical security controls and could lead to further compromise if exploited.\u003c/p\u003e\n\u003ch2 id=\"attack-chain\"\u003eAttack Chain\u003c/h2\u003e\n\u003col\u003e\n\u003cli\u003e\u003cstrong\u003eVulnerability Identification\u003c/strong\u003e: An attacker identifies an internet-accessible OpenClaw instance running a vulnerable version of the \u003ccode\u003eexec-server\u003c/code\u003e (prior to 2026.6.6).\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRequest Crafting\u003c/strong\u003e: The attacker crafts a malicious HTTP request that includes a target internal network destination (e.g., an internal IP address like \u003ccode\u003e192.168.1.1\u003c/code\u003e or a sensitive internal hostname like \u003ccode\u003eintranet.local\u003c/code\u003e) within its parameters, headers, or body.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eExploit Delivery\u003c/strong\u003e: The crafted HTTP request is sent to the vulnerable OpenClaw \u003ccode\u003eexec-server\u003c/code\u003e endpoint.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePolicy Bypass\u003c/strong\u003e: Due to the \u003ccode\u003eCVE-2026-62201\u003c/code\u003e vulnerability, the \u003ccode\u003eexec-server\u003c/code\u003e processes the attacker's request but fails to correctly enforce configured network access control policies for the specified internal destination.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eInternal Network Access\u003c/strong\u003e: The \u003ccode\u003eexec-server\u003c/code\u003e then acts as an unauthorized proxy, initiating an outbound connection to the attacker-specified internal network resource.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eInformation Disclosure/Further Access\u003c/strong\u003e: The \u003ccode\u003eexec-server\u003c/code\u003e relays the response from the internal resource back to the attacker, providing access to information or services that should have been restricted, potentially facilitating internal network reconnaissance or lateral movement.\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2 id=\"impact\"\u003eImpact\u003c/h2\u003e\n\u003cp\u003eSuccessful exploitation of CVE-2026-62201 allows attackers to bypass intended network security policies, granting unauthorized access to internal network resources. This can lead to sensitive data exposure, internal network mapping, and potentially serve as a stepping stone for further sophisticated attacks such as lateral movement, privilege escalation, or even remote code execution if the accessed internal services have their own vulnerabilities. While no specific victims or campaigns are detailed, any organization using vulnerable OpenClaw instances faces a significant risk of internal network compromise.\u003c/p\u003e\n\u003ch2 id=\"recommendation\"\u003eRecommendation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePatch CVE-2026-62201 immediately by upgrading OpenClaw to version 2026.6.6 or later.\u003c/li\u003e\n\u003cli\u003eDeploy the provided Sigma rule to your SIEM to detect suspicious HTTP requests targeting the \u003ccode\u003eexec-server\u003c/code\u003e with internal network destinations.\u003c/li\u003e\n\u003cli\u003eReview web server access logs for any requests to paths related to \u003ccode\u003eexec-server\u003c/code\u003e containing internal IP addresses or reserved network ranges in query parameters or request bodies, as indicated in the Sigma rule.\u003c/li\u003e\n\u003cli\u003eImplement strict network segmentation and egress filtering to prevent internal systems from communicating with unauthorized external or internal destinations, even if a proxy like the \u003ccode\u003eexec-server\u003c/code\u003e is compromised.\u003c/li\u003e\n\u003c/ul\u003e\n","date_modified":"2026-07-17T02:21:33Z","date_published":"2026-07-17T02:21:33Z","id":"https://feed.craftedsignal.io/briefs/2026-07-openclaw-cve-2026-62201/","summary":"OpenClaw versions prior to 2026.6.6 contain a network policy bypass vulnerability, CVE-2026-62201, within its sandbox exec-server that allows lower-trust callers to send HTTP requests to internal network destinations, effectively bypassing configured security policies and leading to server-side request forgery (SSRF).","title":"OpenClaw Network Policy Bypass Vulnerability CVE-2026-62201","url":"https://feed.craftedsignal.io/briefs/2026-07-openclaw-cve-2026-62201/"}],"language":"en","title":"CraftedSignal Threat Feed - Network-Policy-Bypass","version":"https://jsonfeed.org/version/1.1"}