OpenClaw Improper Authorization Vulnerability in Helper-Backed Channels
Vulnerability
A vulnerability exists in OpenClaw versions prior to 2026.4.12, where empty approver lists in helper-backed channels are mistakenly treated as explicit approvals. This flaw allows unauthorized users to resolve pending approvals if they know the approval ID.
Impact
Exploitation of this vulnerability allows unauthorized users to bypass normal channel authorization and resolve pending approvals, potentially leading to unauthorized actions being taken.
Reproduction
To reproduce this vulnerability, send an approval command through a channel that has no native approvals enabled. Ensure that the command is sent from an account that is not authorized to bypass the approval process. The system will incorrectly interpret the absence of approvers as an explicit approval, allowing the action to be completed without proper authorization.
Remediation
Users should upgrade to OpenClaw version 2026.4.12 or later. The latest version available on npm, 2026.4.14, includes the necessary fix.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.