OpenClaw < 2026.3.24 - Privilege Escalation via chat.send to Allowlist Persistence | Advisories

Advisories

OpenClaw < 2026.3.24 - Privilege Escalation via chat.send to Allowlist Persistence

severity: medium
date: 4/10/2026
Affecting: OpenClaw < 2026.3.24
CVE: CVE-2026-35621
CWE: CWE-862 Missing Authorization
CVSS: 7.1
CVSS V4 Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
References: GitHub Security Advisory (GHSA-94pw-c6m8-p9p9)
Credit: Peng Zhou (@zpbrent)
Description: OpenClaw before 2026.3.24 contains a privilege escalation vulnerability where the /allowlist command fails to re-validate gateway client scopes for internal callers, allowing operator.write-scoped clients to mutate channel authorization policy. Attackers can exploit chat.send to build an internal command-authorized context and persist channel allowFrom and groupAllowFrom policy changes reserved for operator.admin scope.

Ready to get Started?

Explore VulnCheck, a next-generation Cyber Threat Intelligence platform, which provides exploit and vulnerability intelligence to help you prioritize and remediate vulnerabilities that matter.

Vulnerability Prioritization
Prioritize vulnerabilities that matter based on the threat landscape and defer vulnerabilities that don't.
Early Warning System
Real-time alerting of changes in the vulnerability landscape so that you can take action before the attacks start.

Schedule a Demo