Impact
The vulnerability lies in OpenClaw versions prior to 2026.4.25, where the tool group policy resolver does not validate provided group IDs. An attacker who can supply a group ID to the resolver may cause the policy engine to execute tools under an incorrect or higher group, thereby circumventing intended access controls. The weakness is classified as CWE‑639 and the CVSS score of 6 indicates a moderate severity where confidentiality and integrity can be compromised for the affected user or system.
Affected Systems
The affected product is OpenClaw, all releases before 2026.4.25. Users running the open source version on Node.js environments are particularly vulnerable; no specific operating system or distribution is singled out beyond the general OpenClaw package.
Risk and Exploitability
The CVSS base score of 6 denotes a moderate risk, and the EPSS score of less than 1% suggests a low probability of exploitation at this time. The vulnerability is not currently catalogued in the CISA KEV list. The most likely attack vector is an attacker who can influence the input of the group ID passed to the policy resolver, which may be achieved through remote code execution of the application or through local privilege escalation if the application allows user‑supplied group identifiers. Existing safeguards are insufficient, so exploitation would rely on the attacker being able to supply the arbitrary group ID to the policy resolver.
OpenCVE Enrichment
Github GHSA