Venustech discovered a high-risk vulnerability in OpenClaw and completed the integration of protective capabilities.

Sina Finance News on March 30th, recently, the Alpha Laboratory of Topsec found multiple vulnerabilities in OpenClaw and reported the details of the vulnerabilities to the OpenClaw official for the first time, while simultaneously submitting to national vulnerability databases such as CNVD, CNNVD, and NVDB-CAIVD. The pre-authentication denial of service vulnerability in OpenClaw Gateway WebSocket has been confirmed by the official, and Topsec has fully assisted OpenClaw in completing the related repair work. While continuing to conduct in-depth exploration of vulnerabilities and risk assessment, Topsec has also completed the integration of targeted defensive capabilities. Currently, Topsec's next-generation firewall, intrusion detection, flame threat detection systems, and other products have integrated exclusive detection models for this type of pre-authentication WebSocket resource exhaustion attack, effectively identifying and intercepting large-scale unauthorized WebSocket upgrade requests to ensure that even in the face of high-intensity sudden attacks, they can stably protect the underlying architecture of the business, safeguard the uninterrupted operation of the core business links, and ensure continuous smooth operation.