Description
OpenClaw before 2026.3.31 contains an authorization bypass vulnerability in Discord slash command and autocomplete paths that fail to enforce group DM channel allowlist restrictions. Authorized Discord users can bypass channel restrictions by invoking slash commands, allowing access to restricted group DM channels.
Published: 2026-04-23
Score: 2.3 Low
EPSS: < 1% Very Low
KEV: No
Impact: Unauthorized Channel Access
Action: Immediate Patch
AI Analysis

Impact

OpenClaw prior to version 2026.3.31 has an authorization bypass flaw in its Discord slash command and autocomplete paths. The flaw prevents the bot from enforcing the group DM channel allowlist, allowing any Discord user who can invoke a slash command to gain access to restricted group DM channels. This issue is limited to access control (CWE-863) and does not provide code execution or data exfiltration capabilities, but it permits unauthorized participation in protected channels.

Affected Systems

The vulnerability affects the OpenClaw application, specifically versions earlier than 2026.3.31. No additional vendors or products are listed; the affected software is the OpenClaw bot running on Node.js environments as indicated by the CPE.

Risk and Exploitability

Although the CVSS score is low at 2.3 and the EPSS score is under 1%, the exploitation requires only a Discord user who can trigger the bot's slash commands, which may be readily available to many actors. The risk is moderate due to potential privacy violations in group DM channels. The vulnerability is not currently listed in the CISA KEV catalog, suggesting it is not widely exploited yet, but systems using OpenClaw must be aware that unauthorized channel access is possible until the patch is applied.

Generated by OpenCVE AI on April 28, 2026 at 14:38 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade OpenClaw to version 2026.3.31 or later, which fixes the allowlist enforcement bug.
  • Verify that the group DM channel allowlist is correctly configured and that restricted channels cannot be accessed via slash commands.
  • Restrict the usage of slash commands to only authorized users or channels to reduce the attack surface until the patch is fully applied.

Generated by OpenCVE AI on April 28, 2026 at 14:38 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-rvvf-6vh3-9j43 OpenClaw: Discord Slash Commands Bypass Group DM Channel Allowlist
History

Thu, 23 Apr 2026 22:15:00 +0000

Type Values Removed Values Added
Description OpenClaw before 2026.3.31 contains an authorization bypass vulnerability in Discord slash command and autocomplete paths that fail to enforce group DM channel allowlist restrictions. Authorized Discord users can bypass channel restrictions by invoking slash commands, allowing access to restricted group DM channels.
Title OpenClaw < 2026.3.31 - Group DM Channel Allowlist Bypass via Discord Slash Commands
First Time appeared Openclaw
Openclaw openclaw
Weaknesses CWE-863
CPEs cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*
Vendors & Products Openclaw
Openclaw openclaw
References
Metrics cvssV3_1

{'score': 5.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N'}

cvssV4_0

{'score': 2.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Openclaw Openclaw
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-04-24T11:00:53.801Z

Reserved: 2026-04-20T14:05:09.184Z

Link: CVE-2026-41348

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-04-23T22:16:41.660

Modified: 2026-04-29T14:41:35.703

Link: CVE-2026-41348

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T14:45:16Z

Weaknesses