A vulnerability labeled as problematic has been found in OpenClaw up to 2026.2.20 . The affected element is the function assertBrowserNavigationAllowed . The manipulation results in externally controlled reference. This vulnerability is cataloged as CVE-2026-32008 . The attack may be launched remotely. There is no exploit available. The affected component should be upgraded.