OpenClaw Canvas Authentication Bypass Vulnerability

OpenClaw contains a critical authentication bypass vulnerability (CVE-2026-3690) that allows unauthenticated remote attackers to gain unauthorized access to affected systems without requiring valid credentials. An attacker can exploit this flaw to access sensitive functionality and data within OpenClaw installations. Security teams should immediately apply available patches, restrict network access to OpenClaw deployments, and monitor for signs of exploitation or unauthorized access attempts.