GHSA-8jhh-jcqg-mj5p

Source

https://github.com/advisories/GHSA-8jhh-jcqg-mj5p

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/03/GHSA-8jhh-jcqg-mj5p/GHSA-8jhh-jcqg-mj5p.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-8jhh-jcqg-mj5p

Downstream

MINI-qgv7-j722-v44v

Published

2026-03-13T15:47:59Z

Modified

2026-03-14T08:48:01.009411Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVSS Calculator

Summary

OpenClaw: Channel commands could bypass account-scoped `configWrites` restrictions

Details

Summary

In affected versions of openclaw, channel-initiated config mutations were authorized against the originating account's configWrites policy but did not consistently re-check the targeted account scope. An authorized sender on one account could mutate protected sibling-account configuration when the target account had configWrites: false.

Impact

This is an account-scoped policy bypass inside a single gateway deployment. Channel commands such as /config set channels.<provider>.accounts.<id>... and config-backed /allowlist ... --config --account <id> could modify protected sibling-account configuration.

Affected Packages and Versions

Package: openclaw (npm)
Affected versions: <= 2026.3.8
Fixed in: 2026.3.11

Technical Details

The mutation path validated the origin account scope but did not consistently authorize every resolved target scope. Ambiguous collection and root writes under channels and channels.<provider>.accounts could therefore reach protected account configuration from channel command surfaces.

Fix

OpenClaw now authorizes config mutations against both the origin scope and each resolved target scope, and it rejects ambiguous root and collection writes from channel commands unless the caller is an internal gateway client with operator.admin. The fix shipped in openclaw@2026.3.11.

Workarounds

Upgrade to 2026.3.11 or later.

Database specific

{
    "github_reviewed": true,
    "github_reviewed_at": "2026-03-13T15:47:59Z",
    "cwe_ids": [
        "CWE-639",
        "CWE-862"
    ],
    "severity": "MODERATE",
    "nvd_published_at": null
}

References

Affected packages

npm / openclaw

Package

Name: openclaw; View open source insights on deps.dev
Purl: pkg:npm/openclaw

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2026.3.11

Database specific

source

"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/03/GHSA-8jhh-jcqg-mj5p/GHSA-8jhh-jcqg-mj5p.json"