OpenClaw before 2026.4.10 contains an incomplete navigation guard vulnerability that allows attackers to trigger navigation without complete SSRF policy enforce…

CVE-2026-43580 affects OpenClaw versions before 2026.4.10, containing an incomplete navigation guard vulnerability. Attackers can exploit this flaw to trigger unauthorized navigation by bypassing SSRF policy enforcement. The vulnerability specifically impacts browser interactions including pressKey and type submit flows. These interactions can circumvent post-action security checks, allowing execution of unauthorized navigation. The issue has been addressed in version 2026.4.10 with multiple commits providing fixes and security advisories available.