OpenClaw < 2026.3.28 - Client Identity Spoofing in chat.send Gateway Provenance Guard | Advisories

Advisories

OpenClaw < 2026.3.28 - Client Identity Spoofing in chat.send Gateway Provenance Guard

severity: high
date: 4/20/2026
Affecting: OpenClaw >= 0, < 2026.3.28
CVE: CVE-2026-41299
CWE: CWE-807 Reliance on Untrusted Inputs in a Security Decision
CVSS: 7.1
CVSS V4 Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
References: GitHub Security Advisory (GHSA-6xg4-82hv-cp6f)
Credit: Peng Zhou (@zpbrent)
Description: OpenClaw before 2026.3.28 contains an authorization bypass vulnerability in the chat.send gateway method where ACP-only provenance fields are gated by self-declared client metadata from WebSocket handshake rather than verified authorization state. Authenticated operator clients can spoof ACP identity labels and inject reserved provenance fields intended only for the ACP bridge by manipulating client metadata during connection.

Ready to get Started?

Explore VulnCheck, a next-generation Cyber Threat Intelligence platform, which provides exploit and vulnerability intelligence to help you prioritize and remediate vulnerabilities that matter.

Vulnerability Prioritization
Prioritize vulnerabilities that matter based on the threat landscape and defer vulnerabilities that don't.
Early Warning System
Real-time alerting of changes in the vulnerability landscape so that you can take action before the attacks start.

Schedule a Demo