OpenClaw Microsoft Teams Plugin Sender Allowlist Bypass Vulnerability

A sender allowlist bypass vulnerability has been identified in the OpenClaw Microsoft Teams plugin, affecting versions prior to 2026.3.8. This vulnerability allows unauthorized senders to bypass authorization checks. When a team or channel route allowlist is set with an empty groupAllowFrom parameter, the message handler automatically grants wildcard sender authorization. This permits any sender in the matched team or channel to respond in allowlisted Teams routes, undermining the intended group authorization controls.

Impact

Exploitation of this vulnerability allows unauthorized senders to trigger replies in allowlisted Teams routes, bypassing established sender authorization checks.

Reproduction

To reproduce this vulnerability, configure a team or channel route allowlist in the OpenClaw Microsoft Teams plugin, leaving the groupAllowFrom parameter empty. When a sender from the matched team or channel sends a message, the message handler will incorrectly authorize the sender, allowing them to bypass the intended authorization checks and respond in the allowlisted Teams route.

Remediation

Users can update to OpenClaw version 2026.3.8 or later, where this vulnerability has been patched.