
OpenClaw Vulnerabilities Let Attackers Turn WhatsApp Messages Into Host-Level Code Execution
Security researchers have disclosed three high-severity vulnerabilities in OpenClaw, the popular open-source AI coding assistant with over 381,000 GitHub stars, that allow attackers to achieve full remote code execution using nothing more than a cleverly worded WhatsApp message. The flaws bypass the tool’s environment variable sanitization, its command execution safeguards, and its Docker sandbox isolation […]
The post OpenClaw Vulnerabilities Let Attackers Turn WhatsApp Messages Into Host-Level Code Execution appeared first on Cyber Security News.