GHSA-6g25-pc82-vfwp

Suggest an improvement
Source
https://github.com/advisories/GHSA-6g25-pc82-vfwp
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/03/GHSA-6g25-pc82-vfwp/GHSA-6g25-pc82-vfwp.json
JSON Data
https://api.osv.dev/v1/vulns/GHSA-6g25-pc82-vfwp
Downstream
Published
2026-03-03T00:39:40Z
Modified
2026-03-04T15:12:29.827365Z
Severity
  • 5.1 (Medium) CVSS_V4 - CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N CVSS Calculator
Summary
OpenClaw: macOS beta onboarding exposed PKCE verifier via OAuth state
Details

Summary

The affected surface is the OpenClaw macOS app onboarding flow, and the macOS app is currently in beta. In that beta onboarding flow, Anthropic OAuth used the PKCE code_verifier value as OAuth state, exposing that secret in front-channel URL state.

Affected Packages / Versions

  • Package: openclaw (npm)
  • Affected versions: <= 2026.2.24 (latest published npm at triage time)
  • Affected surface: macOS app beta onboarding path (apps/macos)
  • Not affected: core CLI/gateway onboarding paths
  • Patched version : 2026.2.25

Impact

Scope is limited to the macOS beta onboarding OAuth path. Exploitation required obtaining both OAuth authorization artifacts and exposed state values during that flow.

Remediation

OpenClaw removed Anthropic OAuth sign-in from macOS onboarding and now supports setup-token-only Anthropic subscription auth in this path.

Fix Commit(s)

  • 8f3310000a8b0c11eced054c2cdb6fb27803511a

Release Process Note

patched_versions is pre-set to the release (2026.2.25). Advisory published with npm release 2026.2.25.2.25` is published, this advisory is published.

OpenClaw thanks @zdi-disclosures for reporting.

Database specific 
{
    "github_reviewed": true,
    "github_reviewed_at": "2026-03-03T00:39:40Z",
    "severity": "MODERATE",
    "nvd_published_at": null,
    "cwe_ids": [
        "CWE-200"
    ]
}
References

Affected packages

npm / openclaw

Package

Name
openclaw
View open source insights on deps.dev
Purl
pkg:npm/openclaw

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2026.2.25

Database specific

source 
"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/03/GHSA-6g25-pc82-vfwp/GHSA-6g25-pc82-vfwp.json"
last_known_affected_version_range 
"<= 2026.2.24"