CVE-2026-35637
HIGHOpenClaw < 2026.3.22 - Premature Cite Expansion Before Authorization in Channel and DM
Title source: cnaDescription
OpenClaw before 2026.3.22 performs cite expansion before completing channel and DM authorization checks, allowing cite work and content handling prior to final auth decisions. Attackers can exploit this timing vulnerability to access or manipulate content before proper authorization validation occurs.
References (5)
Core 5
Core References
Third Party Advisory third-party-advisory
VulnCheck Advisory: OpenClaw < 2026.3.22 - Premature Cite Expansion Before Authorization in Channel and DM
https://www.vulncheck.com/advisories/openclaw-premature-cite-expansion-before-authorization-in-channel-and-dm
Third Party Advisory third-party-advisory
GitHub Security Advisory (GHSA-vfg3-pqpq-93m4)
https://github.com/openclaw/openclaw/security/advisories/GHSA-vfg3-pqpq-93m4
Patch patch
Patch Commit #1
https://github.com/openclaw/openclaw/commit/630f1479c44f78484dfa21bb407cbe6f171dac87
Patch patch
Patch Commit #2
https://github.com/openclaw/openclaw/commit/3cbf932413e41d1836cb91aed1541a28a3122f93
Patch patch
Patch Commit #3
https://github.com/openclaw/openclaw/commit/ebee4e2210e1f282a982c7ef2ad79d77a572fc87
Scores
CVSS v3
7.3
EPSS
0.0025
EPSS Percentile
15.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-696
Status
published
Products (4)
npm/openclaw
0 - 2026.3.22npm
OpenClaw/OpenClaw
< 2026.3.22
openclaw/openclaw
< 2026.3.22
OpenClaw/OpenClaw
2026.3.22
Published
Apr 09, 2026
Tracked Since
Apr 10, 2026