OpenClaw Allowlist Bypass Vulnerability in Matrix Context Handling
Vulnerability
A vulnerability allowing allowlist bypass in OpenClaw versions prior to 2026.3.31 has been identified. This issue arises in the handling of Matrix thread root and reply contexts, where the validation of message senders is inadequate. As a result, attackers can access thread-root and reply context messages that should be restricted by sender allowlists, effectively circumventing access controls.
Impact
Exploitation of this vulnerability allows for unauthorized access to Matrix thread root and reply context messages, bypassing established sender allowlist restrictions.
Reproduction
To reproduce this vulnerability, send a message from a sender not on the allowlist into a Matrix room with allowlist policies. Then, fetch the thread-root or reply context for that message. The response will include the context, despite the sender being non-compliant with the allowlist.
Remediation
Users can update to OpenClaw version 2026.3.31 or later, where this vulnerability has been patched.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.