OpenClaw BlueBubbles Plugin Access Control Bypass Vulnerability

A vulnerability allowing access control bypass has been identified in OpenClaw versions prior to 2026.2.22, specifically within the optional BlueBubbles plugin. The issue arises when the 'allowFrom' configuration is left empty, rendering the direct message (DM) policy pairing and allowlist restrictions ineffective. This misconfiguration allows remote attackers to send direct messages to BlueBubbles accounts by exploiting the flawed allowlist validation logic, thereby bypassing the intended sender authorization checks.

Impact

Exploitation of this vulnerability allows unauthorized senders to bypass DM authorization checks, potentially leading to unauthorized messages being delivered to the recipient.

Reproduction

To reproduce this vulnerability, configure a BlueBubbles account with an empty 'allowFrom' list and set the 'dmPolicy' to 'pairing' or 'allowlist'. When a message is sent from an untrusted sender, the lack of allowlist entries will be exploited to bypass the authorization checks, allowing the message to be delivered.

Remediation

Users can update to OpenClaw version 2026.2.22 or later, where this vulnerability has been patched.