GHSA-vmhq-cqm9-6p7q

Source

https://github.com/advisories/GHSA-vmhq-cqm9-6p7q

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/03/GHSA-vmhq-cqm9-6p7q/GHSA-vmhq-cqm9-6p7q.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-vmhq-cqm9-6p7q

Downstream

MINI-3gj4-2vxx-j298

Published

2026-03-13T20:54:25Z

Modified

2026-03-13T21:01:24.278967Z

Severity

7.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L CVSS Calculator

Summary

OpenClaw: `browser.request` let `operator.write` persist admin-only browser profile changes

Details

Summary

An authorization mismatch in the gateway let an authenticated caller with only operator.write use browser.request to reach browser profile management routes that persist configuration to disk. In practice, this exposed an admin-only configuration write primitive through /profiles/create.

Impact

A write-scoped operator could create or modify browser profiles and store attacker-chosen remote CDP endpoints without holding operator.admin.

Affected versions

openclaw <= 2026.3.8

Patch

Fixed in openclaw 2026.3.11 and included in later releases such as 2026.3.12. Browser profile creation now requires the correct admin boundary, and regression tests cover the write-vs-admin authorization split.

Database specific

{
    "github_reviewed_at": "2026-03-13T20:54:25Z",
    "nvd_published_at": null,
    "cwe_ids": [
        "CWE-863"
    ],
    "severity": "HIGH",
    "github_reviewed": true
}

References

Affected packages

npm / openclaw

Package

Name: openclaw; View open source insights on deps.dev
Purl: pkg:npm/openclaw

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2026.3.11

Database specific

last_known_affected_version_range

"<= 2026.3.8"

source

"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/03/GHSA-vmhq-cqm9-6p7q/GHSA-vmhq-cqm9-6p7q.json"