OpenClaw Microsoft Teams Plugin Sender Allowlist Bypass Vulnerability

A sender allowlist bypass vulnerability has been identified in the OpenClaw Microsoft Teams plugin, affecting versions prior to 2026.3.8. This vulnerability allows unauthorized senders to circumvent authorization checks. When a team or channel route allowlist is set with an empty groupAllowFrom parameter, the message handler automatically grants wildcard sender authorization. This enables any sender in the corresponding team or channel to initiate replies in allowlisted Teams routes, thereby exploiting the authorization mechanism.

Impact

Exploitation of this vulnerability allows unauthorized senders to trigger replies in allowlisted Teams routes, bypassing intended sender authorization checks.

Reproduction

To reproduce this vulnerability, configure a team or channel route allowlist in the OpenClaw Microsoft Teams plugin, leaving the groupAllowFrom parameter empty. Then, send a message from an unauthorized sender in the matched team or channel. The message will be processed as if the sender is authorized, bypassing the allowlist checks and allowing replies in the allowlisted Teams route.

Remediation

Users can update to OpenClaw version 2026.3.8 or later, where this vulnerability has been patched.