Description
OpenClaw before 2026.5.3 contains a policy enforcement vulnerability where Zalo contacts with mutable display metadata could match allowFrom policy entries through display name changes. Attackers with mutable display names could receive agent responses intended for different Zalo identities when the feature is enabled.
Published: 2026-06-16
Score: 8.6 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

OpenClaw versions prior to 2026.5.3 allow Zalo contacts with mutable display metadata to match allowFrom policy entries when the display name is changed. Because the policy enforcement relies on display name, an attacker who can modify their own display name may receive agent responses that were intended for another Zalo identity, thereby compromising confidentiality or possibly integrity of exchanged data. The vulnerability is a policy bypass, classified as CWE‑290, and could enable an attacker to read, modify, or replay sensitive messages intended for a different user.

Affected Systems

OpenClaw, built on Node.js. No specific version range is listed in the CVE data beyond the fact that all releases before 2026.5.3 are affected. Check installed OpenClaw version to confirm vulnerability.

Risk and Exploitability

The CVSS score of 8.6 indicates a high severity. EPSS is < 1 %, showing a very low but non‑zero probability of exploitation at the time of analysis, and the issue is not listed in CISA KEV. The attack vector is inferred to be remote but requires the attacker to interact with the Zalo feature that accepts mutable display names; the vulnerability can be triggered by any user who can alter their display metadata. Given the high CVSS but low EPSS, the overall risk is high severity but the likelihood of or in-the-wild exploitation is currently low.

Generated by OpenCVE AI on June 17, 2026 at 21:22 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade OpenClaw to version 2026.5.3 or later to apply the policy enforcement fix.
  • If an update is not immediately available, disable or lock Zalo’s mutable display name feature in the application configuration until the patch is deployed.
  • Review and tighten allowFrom policy entries so that they rely on immutable identifiers rather than display names, mitigating the risk of policy bypass in future deployments.

Generated by OpenCVE AI on June 17, 2026 at 21:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 16 Jun 2026 20:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 16 Jun 2026 18:30:00 +0000

Type Values Removed Values Added
Description OpenClaw before 2026.5.3 contains a policy enforcement vulnerability where Zalo contacts with mutable display metadata could match allowFrom policy entries through display name changes. Attackers with mutable display names could receive agent responses intended for different Zalo identities when the feature is enabled.
Title OpenClaw < 2026.5.3 - Mutable Display Name Binding in Zalo allowFrom Policy
First Time appeared Openclaw
Openclaw openclaw
Weaknesses CWE-290
CPEs cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*
Vendors & Products Openclaw
Openclaw openclaw
References
Metrics cvssV3_1

{'score': 8.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N'}

cvssV4_0

{'score': 8.6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Openclaw Openclaw
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-16T18:55:30.841Z

Reserved: 2026-06-10T21:22:34.480Z

Link: CVE-2026-53857

cve-icon Vulnrichment

Updated: 2026-06-16T18:36:28.379Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-16T19:17:03.180

Modified: 2026-06-16T20:42:46.200

Link: CVE-2026-53857

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-16T20:15:16Z

Weaknesses
  • CWE-290

    Authentication Bypass by Spoofing