GHSA-3w6x-gv34-mqpf
Suggest an improvement- Source
- https://github.com/advisories/GHSA-3w6x-gv34-mqpf
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/03/GHSA-3w6x-gv34-mqpf/GHSA-3w6x-gv34-mqpf.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-3w6x-gv34-mqpf
- Downstream
- Published
- 2026-03-26T21:24:34Z
- Modified
- 2026-03-26T21:37:18.852796Z
- Severity
-
- 7.1 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N CVSS Calculator
- Summary
- OpenClaw's mutating internal ACP chat commands missed operator.admin scope enforcement
- Details
-
Summary
Mutating internal ACP chat commands missed the operator.admin gate that should separate read-only and mutating control-plane actions.
Affected Packages / Versions
- Package:
openclaw(npm) - Affected: < 2026.3.22
- Fixed: >= 2026.3.22
- Latest released tag checked:
v2026.3.23-2(630f1479c44f78484dfa21bb407cbe6f171dac87) - Latest published npm version checked:
2026.3.23-2
Fix Commit(s)
229426a257e49694a59fa4e3895861d02a4d767f
Release Status
The fix shipped in
v2026.3.22and remains present inv2026.3.23andv2026.3.23-2.Code-Level Confirmation
- src/auto-reply/reply/commands-acp.ts now requires operator.admin for mutating internal ACP actions.
- src/auto-reply/reply/commands-acp.test.ts ships regression coverage for non-admin denial and admin success cases.
OpenClaw thanks @tdjackey for reporting.
- Package:
- Database specific
{ "severity": "HIGH", "cwe_ids": [ "CWE-862" ], "github_reviewed": true, "github_reviewed_at": "2026-03-26T21:24:34Z", "nvd_published_at": null }- References
Affected packages
npm / openclaw
Package
- Name
- openclaw
- View open source insights on deps.dev
- Purl
- pkg:npm/openclaw