Primary

Context

OpenClaw Authorization Bypass Vulnerability in Chat Command Handling

Vulnerability

A vulnerability allowing authorization bypass has been identified in OpenClaw versions prior to 2026.2.2. This issue arises because clients with 'operator.write' scope can approve or deny execution approval requests by sending the '/approve' chat command. The command bypasses the necessary permission check by invoking 'exec.approval.resolve' through an internal privileged gateway client, allowing unauthorized approval of exec requests.

Impact

Exploitation of this vulnerability allows unauthorized clients to approve or deny execution approval requests, potentially disrupting intended workflows or processes that rely on proper authorization.

Remediation

Users are advised to upgrade to OpenClaw version 2026.2.2 or later. If an upgrade is not possible, avoid issuing write-only device tokens to untrusted clients, disable text commands, or restrict access to the webchat or control UI.

Added: Mar 5, 2026, 10:31 PM

Updated: Mar 5, 2026, 10:31 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.5

remediation

0.0

relevance

3.5

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.5

remediation

0.0

relevance

3.5

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OpenClaw Authorization Bypass Vulnerability in Chat Command Handling

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating