CVE-2026-42436: OpenClaw: Browser snapshot and screenshot routes could expose internal page content after navigation
(updated )
Browser snapshot and screenshot routes could expose internal page content after navigation.
References
- github.com/advisories/GHSA-c4qm-58hj-j6pj
- github.com/openclaw/openclaw
- github.com/openclaw/openclaw/commit/b75ad800a59009fc47eaa3471410f69046150e59
- github.com/openclaw/openclaw/pull/66040
- github.com/openclaw/openclaw/security/advisories/GHSA-c4qm-58hj-j6pj
- nvd.nist.gov/vuln/detail/CVE-2026-42436
- www.vulncheck.com/advisories/openclaw-internal-page-content-exposure-via-browser-snapshot-and-screenshot-routes
Code Behaviors & Features
Detect and mitigate CVE-2026-42436 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →