A vulnerability was found in OpenClaw up to 2026.4.23 and classified as critical . The impacted element is an unknown function of the component MCP Loopback Feature . The manipulation results in missing authorization. This vulnerability is reported as CVE-2026-53818 . The attack requires a local approach. No exploit exists. It is suggested to upgrade the affected component.