A vulnerability has been found in OpenClaw up to 2026.1.24 and classified as critical . The impacted element is the function handleBlueBubblesWebhookRequest of the file extensions/bluebubbles/src/monitor.ts of the component bluebubbles Webhook . Performing a manipulation results in improper authentication. This vulnerability is cataloged as CVE-2026-8305 . It is possible to initiate the attack remotely. Furthermore, there is an exploit available. The affected component should be upgraded.