SB2026052919 - Multiple vulnerabilities in OpenClaw
Published: May 29, 2026 Updated: May 29, 2026
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 5 vulnerabilities.
1) Incorrect authorization (CVE-ID: N/A)
CWE-ID: CWE-863 - Incorrect Authorization
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a remote user to bypass authorization checks.
The vulnerability exists due to improper access control in exported QQBot admin commands when handling command invocations through QQBot. A remote user can trigger the exported command from a sender or context that should have been blocked to bypass authorization checks.
Only configurations with the affected feature enabled and reachable are vulnerable.
2) Missing Authorization (CVE-ID: N/A)
CWE-ID: CWE-862 - Missing Authorization
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a remote user to disclose sensitive information.
The vulnerability exists due to improper access control in browser debug/export routes when reusing references to already-open browser tabs. A remote user can reference an already-open blocked private-network tab to disclose sensitive information.
Exploitation requires the affected feature to be enabled and reachable, and user interaction is required.
3) Improper access control (CVE-ID: N/A)
CWE-ID: CWE-284 - Improper Access Control
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a remote user to disclose sensitive information.
The vulnerability exists due to improper access control in memory-wiki shared search when handling shared memory search requests. A remote user can search shared memory through the affected path to disclose sensitive information.
Only instances with the affected feature enabled and reachable are vulnerable.
4) Untrusted search path (CVE-ID: N/A)
CWE-ID: CWE-426 - Untrusted Search Path
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:H/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a remote user to execute an unintended local package-manager executable.
The vulnerability exists due to improper control of executable path in the bundled runtime dependency install helper when processing a workspace .env file in a repository opened by a trusted operator. A remote user can supply a repository containing a crafted workspace .env file to execute an unintended local package-manager executable.
Only configurations where the affected feature is enabled and reachable are vulnerable.
5) Improper access control (CVE-ID: N/A)
CWE-ID: CWE-284 - Improper Access Control
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a remote user to modify configuration.
The vulnerability exists due to improper access control in the QQBot streaming command when handling requests to the affected command with the feature enabled and reachable. A remote user can send a request through a reachable QQBot sender path to modify configuration.
Only deployments where the affected feature is enabled and lower-trust input can reach the command are exposed.
Remediation
Install update from vendor's website.
References
- https://github.com/openclaw/openclaw/security/advisories/GHSA-w4v6-g3wm-w36c
- https://github.com/openclaw/openclaw/security/advisories/GHSA-hcm3-8f6r-6xwg
- https://github.com/openclaw/openclaw/security/advisories/GHSA-72fw-cqh5-f324
- https://github.com/openclaw/openclaw/security/advisories/GHSA-24vr-rprv-67rf
- https://github.com/openclaw/openclaw/security/advisories/GHSA-jvm4-4j77-39p6