Skip to content

OpenClaw's Browser Relay /cdp websocket is missing auth which could allow cross-tab cookie access

High severity GitHub Reviewed Published Feb 14, 2026 in openclaw/openclaw • Updated Mar 6, 2026

No open alerts for this advisory

Give feedback on Dependabot alerts