Security researchers have disclosed a high-severity vulnerability dubbed "ClawJacked" in the popular AI agent OpenClaw that allowed a malicious website to silently bruteforce access to a locally ...
Oasis Security reveals how a new ClawJacked vulnerability could allow attackers to silently take over a victim’s OpenClaw ...
A:ClawJacked是OpenClaw中的一个高严重性安全漏洞,允许恶意网站通过WebSocket连接到本地运行的AI智能体并接管控制权。攻击者可以通过暴力破解密码、注册为受信任设备,最终获得对AI智能体的完全控制权,包括转储配置数据、读取日志等。
一些您可能无法访问的结果已被隐去。
显示无法访问的结果