[r/artificial]score: 0.25
OpenClaw Agent Platform: 245K Exposed Instances, CVSS 9.6 RCE Chain Disclosed
May 28, 2026
OpenClaw, an open-source AI agent platform with 346K GitHub stars, has 245,000 publicly exposed instances with 30,000+ confirmed compromised, stemming from four chainable CVEs including a CVSS 9.6 sandbox write escape and a one-click RCE affecting 50,000+ instances. Twelve percent of its marketplace was found to contain malicious skills across 1,184 packages.
discussion
HOW THIS AFFECTS YOU
●
builderIf you're running or evaluating OpenClaw in any environment, treat all instances as compromised until patched — the CVE chain allows full sandbox escape and credential disclosure.
●
founderThis is the most documented large-scale agentic AI security failure to date; use it as a forcing function to audit your own agent platform's sandbox isolation and marketplace trust model.
●
policyThe scale of compromise — 30K+ instances, 12% marketplace infection — provides concrete evidence for why agentic AI platforms need mandatory security audits before public deployment.