Chainable Bugs Enable Credential Theft, Persistence, Takeover. Four chainable flaws in OpenClaw allowed attackers to move from an initial foothold to persistent system-level compromise by abusing the AI agent’s own privileges. The bugs enabled credential theft, privilege escalation and backdoor deployment, affecting all versions released before April 23.
First seen on govinfosecurity.com
Jump to article: www.govinfosecurity.com/patched-openclaw-flaw-let-hackers-hijack-ai-agents-a-31720
