Description
OpenClaw before 2026.4.29 contains an authorization bypass vulnerability in the QQBot streaming command that allows authenticated senders to mutate configuration without explicit allowFrom restrictions. Attackers can modify QQBot streaming configuration outside intended admin policy by reaching the affected command without non-wildcard allowlist entry requirements.
Published: 2026-06-12
Score: 7.4 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

OpenClaw before 2026.4.29 contains an authorization bypass in the QQBot streaming command. Authenticated senders can mutate configuration settings without being subject to the intended allowlist restrictions, enabling them to change QQBot streaming configuration outside of admin policy. The flaw is categorized as CWE‑290, indicating that authenticated users are allowed to perform actions that should be restricted.

Affected Systems

The vulnerability affects the OpenClaw QQBot product with all releases older than 2026.4.29. The CNA vendor product is listed as QQBot:QQBot. No particular sub‑versions are specified beyond the end‑of‑life release date.

Risk and Exploitability

The CVSS score of 7.4 rates this as a high‑severity vulnerability. The EPSS score is not available, so the likelihood of exploitation cannot be quantified, but the flaw does not require advanced conditions beyond authentication to the QQBot service, and it is not currently listed in the CISA KEV catalog. Attackers who authenticate with any QQBot instance can exploit the bypass to reconfigure the bot, potentially enabling further compromise of the host or escape from application confines.

Generated by OpenCVE AI on June 12, 2026 at 23:38 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest OpenClaw QQBot update (≥2026.4.29) to remediate the allowlist logic flaw.
  • Configure the QQBot streaming command so that only explicitly listed administrators are permitted, removing any wildcard allowlist entries and enforcing strict user verification.
  • Review and tighten QQBot administrative permission sets to ensure that only necessary users have rights to initiate configuration changes.

Generated by OpenCVE AI on June 12, 2026 at 23:38 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 16 Jun 2026 00:45:00 +0000

Type Values Removed Values Added
First Time appeared Openclaw
Openclaw openclaw
CPEs cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*
Vendors & Products Openclaw
Openclaw openclaw

Mon, 15 Jun 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Sat, 13 Jun 2026 12:45:00 +0000

Type Values Removed Values Added
Title OpenClaw < 2026.4.29 - Authorization Bypass via QQBot Streaming Command QQBot for OpenClaw < 2026.4.29 - Authorization Bypass via QQBot Streaming Command
First Time appeared Qqbot
Qqbot qqbot
Vendors & Products Qqbot
Qqbot qqbot

Fri, 12 Jun 2026 22:15:00 +0000

Type Values Removed Values Added
Description OpenClaw before 2026.4.29 contains an authorization bypass vulnerability in the QQBot streaming command that allows authenticated senders to mutate configuration without explicit allowFrom restrictions. Attackers can modify QQBot streaming configuration outside intended admin policy by reaching the affected command without non-wildcard allowlist entry requirements.
Title OpenClaw < 2026.4.29 - Authorization Bypass via QQBot Streaming Command
Weaknesses CWE-290
References
Metrics cvssV3_1

{'score': 7.7, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N'}

cvssV4_0

{'score': 7.4, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-15T18:17:47.370Z

Reserved: 2026-06-10T21:16:58.212Z

Link: CVE-2026-53833

cve-icon Vulnrichment

Updated: 2026-06-15T18:17:42.850Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-12T22:16:54.947

Modified: 2026-06-16T00:34:44.637

Link: CVE-2026-53833

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-13T12:29:52Z

Weaknesses
  • CWE-290

    Authentication Bypass by Spoofing