Primary

Context

OpenClaw Authorization Bypass Vulnerability in Chat Gateway Provenance Fields

Vulnerability

An authorization bypass vulnerability has been identified in OpenClaw versions prior to 2026.3.28. The issue resides in the chat.send gateway method, where ACP-only provenance fields are controlled by self-declared client metadata from the WebSocket handshake, rather than verified authorization status. This flaw allows authenticated operator clients to spoof ACP identity labels and inject reserved provenance fields meant solely for the ACP bridge by manipulating client metadata during the connection process.

Impact

Exploitation of this vulnerability allows authenticated operator clients to spoof ACP identity labels and inject reserved provenance fields into the chat.send gateway, bypassing the intended authorization controls.

Remediation

Users can upgrade to OpenClaw version 2026.3.28 or later to address this vulnerability.

Added: Apr 21, 2026, 12:23 AM

Updated: Apr 21, 2026, 12:23 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

0.0

relevance

6.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

0.0

relevance

6.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OpenClaw Authorization Bypass Vulnerability in Chat Gateway Provenance Fields

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating