Duplicate Advisory: OpenClaw: MCP loopback owner context is derived from server-issued bearer tokens

GHSA-35vf-vw9f-q3cr

Published May 6, 2026 · Modified May 11, 2026

Description

Duplicate Advisory

This advisory has been withdrawn because it is a duplicate of GHSA-r6xh-pqhr-v4xh. This link is maintained to preserve external references.

Original Description

OpenClaw before 2026.4.22 derives loopback MCP owner context from spoofable server-issued bearer tokens in request headers. Non-owner loopback clients can present themselves as owner to bypass owner-gated operations by manipulating the sender-owner header metadata.

References

WEB https://github.com/openclaw/openclaw/security/advisories/GHSA-r6xh-pqhr-v4xh
ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2026-44118
WEB https://github.com/openclaw/openclaw/commit/3cb1a56bfc9579a0f2336f9cfa12a8a744332a19
WEB https://www.vulncheck.com/advisories/openclaw-owner-context-spoofing-via-bearer-token-header

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes