Primary

Context

OpenClaw Privilege Escalation Vulnerability in Slack Slash Command Handler via Direct Messages

Vulnerability

A privilege escalation vulnerability has been identified in OpenClaw versions prior to 2026.2.14. This vulnerability resides in the Slack slash-command handler, which improperly authorizes any sender of direct messages when the dmPolicy is set to open. As a result, attackers can execute privileged slash commands through direct messages, bypassing allowlist and access-group restrictions.

Impact

Exploitation of this vulnerability allows any Slack user who can send direct messages to the bot to invoke privileged slash commands, circumventing established authorization controls.

Reproduction

To reproduce this vulnerability, configure Slack direct messages to 'open' and send a direct message to the OpenClaw bot. The bot will incorrectly authorize the message sender to execute privileged slash commands.

Remediation

Users can update to OpenClaw version 2026.2.14 or later, where this vulnerability has been patched.

Added: Mar 5, 2026, 10:49 PM

Updated: Mar 5, 2026, 10:49 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

6.3

remediation

0.0

relevance

3.5

threat

4.8

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

6.3

remediation

0.0

relevance

3.5

threat

4.8

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OpenClaw Privilege Escalation Vulnerability in Slack Slash Command Handler via Direct Messages

Vulnerability

Impact

Reproduction

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating