OpenClaw Input Validation Vulnerability in Agent Hook Events Allowing Trust Escalation
Vulnerability
A vulnerability in OpenClaw versions prior to 2026.4.10 allows for insufficient validation of input in agent hook events. This flaw enables external metadata to be processed as trusted system events. Attackers can exploit this by injecting malicious hook names, thereby elevating untrusted data into a higher-trust context within the agent.
Impact
Exploitation of this vulnerability could lead to untrusted input being accepted as trusted system events, allowing for manipulation of agent context with potentially harmful data.
Reproduction
The vulnerability can be reproduced by dispatching an agent hook with an unsanitized name that includes malicious metadata. This can be done by creating a payload that exploits the lack of input validation and sending it through the agent hook system.
Remediation
Users are advised to upgrade to OpenClaw version 2026.4.10 or later. The latest npm release, 2026.4.14, includes the necessary fix.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.