China Academy of Information and Communications Technology Jointly Discovers OpenClaw Critical Vulnerability with Universities and Assists in Rapid Patching

Everyday AI Express, March 16 — According to the China Academy of Information and Communications Technology (CAICT), recently, CAICT, together with a joint research team from Shanghai Jiao Tong University and Nanjing University, conducted an in-depth security audit of the open-source autonomous agent framework OpenClaw. Through static analysis and dynamic practical testing, they discovered and verified a serious vulnerability: LLM-Driven Command Injection. The research team has completed attack chain verification across various mainstream model environments and reported the issue on GitHub, assisting in the prompt repair of this high-risk security threat. CAICT will continue to monitor the security risks of OpenClaw and support safe industry applications.

Daily Economic News

(责任编辑：Guo Jiandong)

【Disclaimer】This article only reflects the author’s personal views and is not related to Hexun. Hexun.com maintains neutrality regarding the statements and opinions in the article and does not provide any explicit or implied guarantees regarding the accuracy, reliability, or completeness of the content. Readers are advised to use it for reference only and bear all responsibilities themselves. Email: news_center@staff.hexun.com