GHSA-9VVH-2768-C8VP: Improper Access Control in OpenClaw Discord Reaction Ingress
Vulnerability ID: GHSA-9VVH-2768-C8VP
CVSS Score: 5.4
Published: 2026-03-13
OpenClaw versions prior to v2026.3.11 contain an improper access control vulnerability within the Discord integration module. The reaction ingress handler fails to validate user and role allowlists, permitting unauthorized users to trigger restricted bot workflows via message reactions.
TL;DR
A flaw in OpenClaw's Discord integration allows unauthorized users to bypass channel allowlist restrictions by reacting to messages, triggering AI workflows without proper authorization.
Technical Details
- CWE ID: CWE-284, CWE-863
- Attack Vector: Network
- CVSS Score: 5.4
- Exploit Status: None
- Impact: Access Control Bypass
- Required Privileges: Low (Channel Read/React access)
Affected Systems
- OpenClaw Discord Integration Module
-
openclaw/openclaw: < v2026.3.11 (Fixed in:
v2026.3.11)
Code Analysis
Commit: 487a3ba
Fix Discord guild reaction ingress bypassing users and roles allowlists
Mitigation Strategies
- Upgrade OpenClaw version
- Disable reaction notifications
- Restrict reaction modes via configuration
Remediation Steps:
- Update the OpenClaw application to version v2026.3.11.
- Audit all Discord guild configurations for active reaction integrations.
- If patching is delayed, temporarily set
reactionNotifications: { mode: "off" }ormode: "own"in the channel configuration.
References
Read the full report for GHSA-9VVH-2768-C8VP on our website for more details including interactive diagrams and full exploit analysis.
Top comments (0)