OpenClaw Authorization Bypass Vulnerability in Session Termination Endpoint
Vulnerability
A vulnerability exists in OpenClaw versions prior to 2026.4.2, where the POST /sessions/:sessionKey/kill endpoint does not properly enforce write scopes in identity-bearing HTTP modes. This oversight allows read-scoped callers to terminate active subagent sessions, effectively bypassing authorization controls. The issue arises from a failure to regulate session termination requests according to the specified scope permissions, particularly in shared-secret bearer authentication.
Impact
Exploiting this vulnerability allows read-scoped users to perform unauthorized session termination, disrupting active subagent processes and causing potential interruptions in delegated tasks.
Reproduction
To reproduce this vulnerability, send a POST request to the /sessions/:sessionKey/kill endpoint while including a read-only operator scope. The request will bypass authorization and terminate the specified session, demonstrating the lack of proper scope enforcement.
Remediation
Users can upgrade to OpenClaw version 2026.4.2 or later to address this vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.