CVE-2026-8305 | OpenClaw up to 2026.1.24 bluebubbles Webhook monitor.ts handleBlueBubblesWebhookRequest improper authentication (Issue 13786)

A vulnerability has been found in OpenClaw up to 2026.1.24 and classified as critical. The impacted element is the function handleBlueBubblesWebhookRequest of the file extensions/bluebubbles/src/monitor.ts of the component bluebubbles Webhook. Performing a manipulation results in improper authentication.

This vulnerability is cataloged as CVE-2026-8305. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More