CVE-2026-22174 | OpenClaw up to 2026.2.21 Authentication Token /json/version missing authentication (GHSA-v3j7-34xh-6g3w)

A vulnerability was found in OpenClaw up to 2026.2.21. It has been rated as critical. This affects an unknown function of the file /json/version of the component Authentication Token Handler. The manipulation leads to missing authentication.

This vulnerability is documented as CVE-2026-22174. The attack needs to be performed locally. There is not any exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More