CVE-2026-22170

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.2.22

Description OpenClaw, when used with the optional BlueBubbles plugin, has an access control issue. An empty 'allowFrom' configuration can cause the dmPolicy pairing and allowlist restrictions to be ineffective. This allows remote attackers to send direct messages to BlueBubbles accounts by bypassing the intended sender authorization checks. The issue stems from a misconfigured allowlist validation logic. The vulnerability affects deployments where the identifier is publicly reachable or agent tool permissions are broad, but poses a lower risk in personal setups with single-owner BlueBubbles identities. The isAllowedBlueBubblesSender() function, which delegates to isAllowedParsedChatSender(), previously returned true for empty allowlists, leading to the bypass.

Recommendations Update OpenClaw to version 2026.2.22 or later.