OpenClaw Missing Authorization Vulnerability in Chat Command Handlers Allowing Unauthorized Session Policy Changes

A missing authorization vulnerability has been identified in OpenClaw versions prior to 2026.3.24. This vulnerability exists in the chat command handlers for '/send' and '/allowlist'. The '/send' command allows non-owner users with command authorization to alter session delivery policy settings that are meant to be owner-only. Similarly, the '/allowlist' command fails to enforce the required 'operator.admin' scope for mutating commands. As a result, users with 'operator.write' scope can misuse these commands to make unauthorized changes to session policies and allowlist entries.

Impact

Exploitation of this vulnerability allows for unauthorized changes to session delivery policies and allowlist entries, creating potential disruptions in communication and management processes.

Reproduction

To reproduce this vulnerability, first ensure that the OpenClaw version is prior to 2026.3.24. Then, configure a channel to allow a non-owner sender to execute commands. Start a session and send a '/send' command to change the delivery policy, or use the '/allowlist' command to modify allowlist entries without proper authorization.

Remediation

Users can update to OpenClaw version 2026.3.24 or later, where this vulnerability has been fixed.