CVE-2026-28448

Name of the Vulnerable Software and Affected Versions OpenClaw versions 2026.1.29 through 2026.2.0

Description The OpenClaw software, with the Twitch plugin installed and enabled, has an issue where access control is bypassed. Specifically, the allowFrom allowlist is not properly enforced when allowedRoles is not set or is empty. This allows unauthorized Twitch users to trigger agent dispatch by mentioning the bot in Twitch chat. The problematic logic resides in the checkTwitchAccessControl() function within the Twitch plugin (extensions/twitch/src/access-control.ts). When allowFrom is configured, the code does not return allowed: false for non-members, causing execution to continue. If allowedRoles is unset or empty, the function defaults to allowed: true, even when allowFrom is configured. This can lead to unintended actions, responses, and potential resource exhaustion for operators who relied on allowFrom to restrict bot invocation in Twitch chat.

Recommendations OpenClaw versions 2026.1.29 through 2026.2.0 should be upgraded to version 2026.2.1 or later.