OpenClaw Missing Owner-Only Enforcement in Allowlist Cross-Channel Writes
Vulnerability
A vulnerability exists in OpenClaw versions prior to 2026.4.8, where the /allowlist endpoint fails to enforce owner-only permissions for cross-channel allowlist modifications. This oversight allows an authorized non-owner sender to manipulate allowlist entries in different channels, undermining the application's trust model.
Impact
The vulnerability could lead to unauthorized allowlist modifications across channels, allowing users to bypass intended access controls.
Reproduction
To reproduce this vulnerability, an authorized non-owner user can send a request to the /allowlist endpoint to modify allowlist entries for a channel they do not own. This can be done by including the necessary authorization credentials while targeting a different channel, taking advantage of the missing owner-only enforcement.
Remediation
Users can update to OpenClaw version 2026.4.8 or later, where this vulnerability has been addressed.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.