MEDIUM 6.5 npm
OpenClaw: Matrix thread root and reply context bypass sender allowlist
GHSA-rg8m-3943-vm6q · CVE-2026-41376
Published · Modified
Description
Summary
Matrix thread root and reply context bypass sender allowlist
Current Maintainer Triage
- Status: open
- Normalized severity: medium
- Assessment: Real in shipped v2026.3.28 Matrix because fetched thread-root/reply context bypasses sender allowlists, with unreleased mainline filtering fix.
Affected Packages / Versions
- Package:
openclaw(npm) - Latest published npm version:
2026.3.31 - Vulnerable version range:
<=2026.3.28 - Patched versions:
>= 2026.3.31 - First stable tag containing the fix:
v2026.3.31
Fix Commit(s)
8a563d603b70ef6338915f0527bee87282c3bad5— 2026-03-31T17:09:03+01:00
OpenClaw thanks @AntAISecurityLab for reporting.
References
- WEB https://github.com/openclaw/openclaw/security/advisories/GHSA-rg8m-3943-vm6q
- ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2026-41376
- WEB https://github.com/openclaw/openclaw/commit/8a563d603b70ef6338915f0527bee87282c3bad5
- PACKAGE https://github.com/openclaw/openclaw
- WEB https://github.com/openclaw/openclaw/releases/tag/v2026.3.31
- WEB https://www.vulncheck.com/advisories/openclaw-matrix-thread-context-allowlist-bypass-via-sender-validation
Ready to move
Start Securing
Free, no credit card | First findings in minutes