OpenClaw Synology Chat Plugin Authorization Bypass Vulnerability
Vulnerability
An authorization bypass vulnerability has been identified in the OpenClaw application, specifically in versions 2026.2.22 prior to 2026.2.24. The issue resides within the Synology Chat channel plugin, where the direct message (DM) policy set to allowlist with an empty allowedUserIds list fails to block unauthorized senders. This flaw allows attackers with Synology sender access to bypass authorization checks and send unauthorized messages to downstream agents and tools.
Impact
Exploitation of this vulnerability allows for unauthorized message dispatch to downstream agents and tools, bypassing established authorization checks.
Reproduction
To reproduce this vulnerability, configure the Synology Chat plugin with the DM policy set to 'allowlist' and leave the allowedUserIds list empty. When this configuration is active, the plugin fails to block unauthorized senders, allowing them to send messages that are dispatched to downstream agents and tools.
Remediation
Users can update to OpenClaw version 2026.2.24 or later, where this vulnerability has been patched.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.