TianRongXin detects the OpenClaw critical vulnerability and completes the protection capability integration.

Recently, Tianrongxin Alpha Lab discovered multiple vulnerabilities in OpenClaw, and has reported the vulnerability details to OpenClaw’s official team at the first opportunity, while also synchronously submitting to national vulnerability database platforms such as CNVD, CNNVD, and NVDB-CAIVD. Among them, the OpenClaw Gateway WebSocket pre-authentication denial-of-service vulnerability has been officially confirmed (security advisory GHSA-f44p-c7w9-7xr7). Tianrongxin has provided full assistance to OpenClaw in completing the related remediation work. While continuing to carry out in-depth vulnerability discovery and risk assessment, Tianrongxin has also completed the integration of targeted defensive capabilities. At present, products such as Tianrongxin’s next-generation firewall, intrusion detection, and flame threat detection systems have integrated dedicated detection models for this type of pre-authentication WebSocket resource exhaustion attack. These models can effectively identify and block large-scale unauthenticated WebSocket upgrade requests, ensuring that even when facing high-intensity sudden attacks, they can stably protect the underlying business architecture, safeguard the continuity and stable operation of enterprises’ core business paths, and prevent disruptions to core business workflows. (People’s Finance News)