A vulnerability classified as critical was found in OpenClaw up to 2026.3.21 . This vulnerability affects unknown code. Executing a manipulation can lead to external control of assumed-immutable web parameter. This vulnerability is handled as CVE-2026-41353 . The attack can be executed remotely. There is not any exploit available. Upgrading the affected component is advised.