OpenClaw founder confirms in reply that 360 was the exclusive discoverer of the vulnerability.

The 360 ​​Security Cloud team has received confirmation from the founder of OpenClaw that they have exclusively discovered a high-risk zero-day vulnerability in its Gateway feature. This WebSocket vulnerability, which involves no authentication upgrade, could lead to privilege escalation and system crashes. The risk has been reported to CNVD.