Description
OpenClaw before 2026.4.25 contains an input validation vulnerability in tool group policy callers that accept unvalidated group IDs. Attackers who can supply a group ID to the policy resolver could trigger incorrect group-policy decisions for tool invocations, potentially bypassing intended access controls.
Published: 2026-06-16
Score: 6 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability lies in OpenClaw versions prior to 2026.4.25, where the tool group policy resolver does not validate provided group IDs. An attacker who can supply a group ID to the resolver may cause the policy engine to execute tools under an incorrect or higher group, thereby circumventing intended access controls. The weakness is classified as CWE‑639 and the CVSS score of 6 indicates a moderate severity where confidentiality and integrity can be compromised for the affected user or system.

Affected Systems

The affected product is OpenClaw, all releases before 2026.4.25. Users running the open source version on Node.js environments are particularly vulnerable; no specific operating system or distribution is singled out beyond the general OpenClaw package.

Risk and Exploitability

The CVSS base score of 6 denotes a moderate risk, and the EPSS score of less than 1% suggests a low probability of exploitation at this time. The vulnerability is not currently catalogued in the CISA KEV list. The most likely attack vector is an attacker who can influence the input of the group ID passed to the policy resolver, which may be achieved through remote code execution of the application or through local privilege escalation if the application allows user‑supplied group identifiers. Existing safeguards are insufficient, so exploitation would rely on the attacker being able to supply the arbitrary group ID to the policy resolver.

Generated by OpenCVE AI on June 17, 2026 at 21:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to OpenClaw version 2026.4.25 or later to address the group ID validation flaw.
  • If an immediate upgrade is not possible, modify the policy resolver to accept only pre‑approved group identifiers and reject or sanitize all others.
  • Implement monitoring of tool group policy requests for anomalous group ID usage, and set controls to block unauthorized group IDs proactively.

Generated by OpenCVE AI on June 17, 2026 at 21:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-985f-72mj-8gf7 OpenClaw: Tool group policy callers could accept unvalidated group IDs
History

Tue, 16 Jun 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Tue, 16 Jun 2026 18:30:00 +0000

Type Values Removed Values Added
Description OpenClaw before 2026.4.25 contains an input validation vulnerability in tool group policy callers that accept unvalidated group IDs. Attackers who can supply a group ID to the policy resolver could trigger incorrect group-policy decisions for tool invocations, potentially bypassing intended access controls.
Title OpenClaw < 2026.4.25 - Unvalidated Group ID Acceptance in Tool Group Policy
First Time appeared Openclaw
Openclaw openclaw
Weaknesses CWE-639
CPEs cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*
Vendors & Products Openclaw
Openclaw openclaw
References
Metrics cvssV3_1

{'score': 7.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N'}

cvssV4_0

{'score': 6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N'}


Subscriptions

Openclaw Openclaw
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-16T18:55:23.716Z

Reserved: 2026-06-10T21:22:34.480Z

Link: CVE-2026-53863

cve-icon Vulnrichment

Updated: 2026-06-16T18:35:53.999Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-16T19:17:04.633

Modified: 2026-06-16T20:42:46.200

Link: CVE-2026-53863

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-17T21:30:12Z

Weaknesses
  • CWE-639

    Authorization Bypass Through User-Controlled Key